Social network you want to login/join with:
Would you like to join a small, friendly team in a FTSE 100 company that is building a people first culture and is based in one of the best cities to live in the UK? If so, read on.
The Information Security & Resilience Team at Unite Students is looking for an experienced, enthusiastic SecOps Engineer. We support the business in all its objectives — from building new interfaces with customers to improving the student living experience, and everything in between. There is significant work to be done to protect the company's digital assets and its people, but you will receive plenty of support and guidance, and your knowledge and experience will be invaluable in shaping our InfoSec capabilities.
What You`ll Be Doing
* Network Security: Design, implement, and manage secure network architectures. Monitor network traffic for suspicious activity and respond to security incidents. Conduct regular network security assessments and audits to ensure compliance with security policies and standards.
* Vulnerability Analysis: Conduct regular vulnerability assessments and penetration testing to identify and mitigate security risks. Develop and implement strategies to address vulnerabilities. Track and report on the status of vulnerabilities and remediation efforts.
* Forensic Analysis: Perform forensic analysis of security incidents to determine the root cause and impact. Collect and preserve evidence in accordance with legal and regulatory requirements. Provide detailed forensic reports and recommendations for improving security posture.
* Incident Response: Lead and coordinate incident response efforts, including detection, containment, eradication, and recovery. Support development and maintenance of incident response plans and procedures. Conduct post-incident reviews and lessons learned sessions to improve response capabilities.
* Security Tools: Utilize and maintain security tools and technologies, such as firewalls and intrusion detection/prevention systems. Ensure security tools are properly configured and updated. Evaluate and recommend new security tools and technologies to enhance security operations.
* Documentation: Create and maintain detailed documentation of security incidents, forensic analysis, and vulnerability assessments. Prepare reports for management and stakeholders.
* Collaboration: Work closely with other IT and Digital teams to ensure comprehensive security coverage. Provide security guidance to projects and programs as required. Work closely with developers to support secure coding practices and embed security considerations early in development.
* Professional Development: Maintain knowledge of the latest cyber threats and security technologies. Stay informed about industry best practices and emerging security trends. Continuously improve skills and knowledge through training and professional development.
What We`re Looking for in You
* In-depth IT Knowledge: Extensive experience with IT technologies, including cloud infrastructure; experience with AWS is an advantage. Understanding of the Secure Software Development Lifecycle.
* Security Tools Proficiency: Expertise in using firewalls (especially Palo Alto), intrusion detection systems, and endpoint security solutions.
* Network Security: Strong understanding of network protocols, VPNs, and network security architecture.
* Incident Response: Ability to detect, analyze, and respond to security incidents, including forensics and malware analysis.
* Vulnerability Management: Experience in identifying, assessing, and mitigating vulnerabilities in systems and applications.
* Automation: Skills in scripting and automation for security tasks (e.g., Python, PowerShell).
* Information Security Frameworks: Working knowledge of common frameworks and standards, such as ISO 27001/2/5, NIST800-53, and Cyber Essentials.
* Risk Management and Compliance: Thorough understanding of Information Security Risk Management and Compliance frameworks, including the ability to assess information risks and select appropriate controls.
* Data Protection: Understanding of data protection concepts and regulations, such as PII and GDPR.
* Documentation Skills: Proven ability to draft clear, concise, and usable Information Security documentation based on consultation with relevant stakeholders and risk assessments.
* Communication Skills: Effective communication skills, including explaining technical subjects to non-technical audiences.
* Organizational Skills: Solid organizational skills, including multitasking, attention to detail, and time management.
* Team Collaboration: Ability to work in a team and facilitate cross-functional conversations.
* Work Experience: Extensive experience in cybersecurity roles, focusing on security operations, incident response, and threat management.
* Project Management: Experience in managing security projects and coordinating with cross-functional teams.
* Relevant Certifications: Certifications such as CCSP, CEH, CompTIA Security+, MS Azure, or AWS certifications are highly desirable.
What You`ll Get in Return
* A discretionary annual bonus sharing the company's success.
* 25 days' paid holiday, an annual holiday buying scheme, and 5 additional days for long service.
* A generous pension scheme with employer contributions between 5% and 11% depending on your contributions.
* Benefits supporting health and wellbeing, including Healthcare Cash Plan, Employee Assistance Programme, Wellbeing platform, and Gym benefit for you and your family.
* Enhanced Family Leave: 18 weeks full pay for birthing parents and 4 weeks for non-birthing parents.
* Additional benefits including ShareSave scheme, Employee Life Assurance, discounts portal, and more!
#J-18808-Ljbffr