Security Operations Specialist

Security Operations Specialist

About

Evelyn Partners is a UK leader in wealth management, providing personalized investment management and financial planning advice. Their success is driven by passionate professionals guided by a purpose to place the power of good advice into more hands, helping clients make significant decisions with confidence.

Responsibilities

• Provide Second and Third Line review, analysis, and incident response for Security events and incidents reported to the SOC, responding in line with agreed SLAs.
• Support external Security partners in ensuring correct monitoring and relevant/effective rulesets.
• Provide support to the Security Operations Centre Manager in the planning and implementation of security measures and controls.
• Build relationships with key stakeholders in Technology Services to drive operational security improvements.
• Provide guidance to end users on best practice operational security.
• Respond to escalated security incidents in line with timescales and highlight events requiring further investigation.
• Coordinate and support third-party security service vendors.
• Analyze security reports to identify trends and work with teams to develop strategies for secure behaviors.
• Act as a technical SME within the Cyber Incident Response team.
• Maintain and deliver Phishing campaigns, reporting, and remediation management.
• Perform operational and security maintenance of the Security tooling stack, conducting security reviews and maintaining awareness of security policies and regulatory requirements.

Requirements

• Previous experience of working in a Security Operations Centre (SOC).
• Minimum 3 years of experience in security operations or a technical security role, with a focus on understanding attack paths, mitigations, security operations, incident response, and detection engineering.
• Excellent understanding of SIEM, IAM, and DLP programs and technologies, and expertise in applying operational security requirements in Zero Trust networks.
• Knowledge and experience of managing operational security in an Azure/365-centric environment.
• Experience in analysis of cyber attacks using methodologies such as MITRE ATT&CK and other relevant frameworks.
• Demonstrable ability to keep updated on the subject matter in an ever-changing threat landscape.
• Bachelors or Masters degree in InfoSec/InfoSys/Computer Science or equivalent degree or work experience is desired.
• Relevant industry certifications are desirable.