Enable job alerts via email!
Security Operations Engineer
Cantor Fitzgerald
City of Westminster
On-site
GBP 60,000 - 80,000
Full time
3 days ago
Be an early applicant
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
Job summary
A leading investment firm in the City of Westminster seeks a Cybersecurity Specialist to monitor and respond to security incidents. Candidates should possess a Bachelor's degree in Cybersecurity and at least five years of experience in Security Operations. Responsibilities include developing detection rules, conducting threat hunting, and ensuring compliance across systems. The ideal applicant will have proficiency in cloud platforms and SIEM tools. This role is pivotal for enhancing the organization's security posture.
Qualifications
- Minimum five years of experience in Security Operations.
- At least three years of Linux Administration experience.
- At least two years of Cloud (AWS or Azure) Administration experience.
Responsibilities
- Monitor, analyze, and respond to security events and incidents.
- Develop and maintain detection rules, playbooks, and automation scripts.
- Perform threat hunting and forensic investigations.
- Collaborate with teams on secure configurations and compliance.
- Maintain endpoint protection and intrusion detection/prevention systems.
Skills
Linux and Windows OS
DNS
Certificate Management: Digicert, AppViewX
Ticket management solutions: Dynamics 365, ServiceNow
PMO tools such as Jira, Smartsheet
SIEM and SOAR technologies (Splunk, Cribl, Azure Sentinel)
EDR/Microsoft Defender for Endpoint
AWS and Azure (IAM, IaaS, PaaS)
KQL queries in Sentinel/SPL in Splunk
Network packet analysis tools (Wireshark, TCPDump)
Collaboration and communication skills
Education
Bachelor's Degree in MIS, CIS, Cybersecurity or similar
Job description
Responsibilities
- Monitor, analyze, and respond to security events and incidents using SIEM and other security tools.
- Develop and maintain detection rules, playbooks, and automation scripts to improve incident response efficiency.
- Perform threat hunting and forensic investigations across IT environment.
- Collaborate with infrastructure and application teams to ensure secure configurations and compliance.
- Maintain and improve endpoint protection, intrusion detection/prevention systems.
- Document incident response procedures and contribute to post incident reviews.
- Create network diagrams and as built documents.
- Develop and maintain a strong partnership with relevant global businesses and technical leaders and teams, including 3rd parties and affiliate businesses.
Qualifications
- Bachelor's Degree in MIS, CIS, Cybersecurity or similar.
- At least five years of Security Operations.
- At least three years of Linux Administration.
- At least two years of Cloud (AWS or Azure) Administration.
Must Have Skills
- Linux and Windows OS.
- DNS.
- Certificate Management: Digicert, AppViewX.
- Experience with ticket management solutions: Dynamics 365, ServiceNow, Remedy, etc.
- Experience with PMO tools such as Jira, Smartsheet, etc.
- SIEM and SOAR technologies (Splunk, Cribl, Azure Sentinel).
- Configure and troubleshoot EDR/ Microsoft Defender for Endpoint, vulnerability management, and threat detection systems, with focus on Linux OS.
- Azure Security Center and Office 365 Compliance Portal.
- AWS and Azure (IAM, IaaS, PaaS).
- Knowledge in KQL queries in Sentinel and/or SPL in Splunk for developing use cases, dashboards, custom rules, custom parsers.
- Intermediate understanding of services and protocols commonly used in hosting environments: web servers, database servers, active directory protocols.
- Understanding of network packet analysis using tools such as Wireshark and TCPDump.
- Collaboration and communication skills across multiple teams and businesses.
Good to Have Skills
- Relevant certifications such as AWS Security Specialty, CISA, CISM, GIAC, Security+, or CISSP.
- Palo Alto Cortex suite of tools.
- Network technologies: switching, routing, wireless.
- PowerShell and Python Scripting.
- Power BI and Power Automate.
- Integrating security systems via API, etc.
Get your free, confidential resume review.
or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
Michael Carter
I was stuck sending out resumes with no response until I used JobLeads. They made my resume impossible for recruiters to ignore.
Sophie Reynolds
JobLeads' resume review helped me fix critical mistakes, and I started getting interviews almost immediately!
Daniel Fischer
With JobLeads' resume review, my resume went from overlooked to interview-ready in no time!