Job Title: Principle Engineer - Cyber Security Operations Lead
Location: Tyneside, Newcastle
Type: Full-Time, Permanent
Salary: £55.7k
We are seeking a Principle Engineer to join the Cyber Security team, who will be instrumental in managing and improving our technical cyber security defences. They will lead efforts in endpoint security, vulnerability management, alert triage, secure software development lifecycle, and network security. This role demands a proactive individual with a deep understanding of security technologies and a strategic approach to threat management.
Key Responsibilities:
1. Endpoint Security:
o Lead the deployment, configuration, and management of endpoint security solutions.
o Monitor and respond to endpoint security incidents and threats.
o Conduct regular endpoint security assessments and audits to ensure compliance with security policies.
2. Vulnerability Management:
o Perform regular vulnerability scans and assessments across all systems.
o Prioritise and remediate vulnerabilities in collaboration with IT and development teams.
o Develop and maintain a comprehensive vulnerability management program.
3. Alert Triage:
o Monitor security alerts and incidents from various sources, including SIEM, IDS/IPS, and other security tools.
o Perform initial triage and analysis of security events to determine their severity and impact.
o Escalate and coordinate response efforts for high-priority incidents.
4. Secure SDLC:
o Integrate security best practices into the software development lifecycle.
o Conduct security reviews and assessments of applications and code.
o Collaborate with development teams to ensure secure coding practices and design.
5. Network Security:
o Monitor and protect the organisation's network infrastructure.
o Implement and manage network security measures, including firewalls, VPNs, and intrusion detection/prevention systems.
o Conduct network security assessments and penetration tests.
Qualifications:
* Minimum of 4 years of experience in a SOC or technical cyber security role.
* Relevant certifications (e.g., CISSP, CISM, CEH, GIAC) are highly desirable.
* Strong knowledge of endpoint security technologies (e.g., EDR, antivirus).
* Proficiency in vulnerability management tools and processes.
* Experience with SIEM platforms and security alert triage.
* Strong understanding of secure SDLC practices and tools.
* Solid grasp of network security principles and technologies.
* Excellent analytical and problem-solving skills.
* Strong communication and collaboration abilities.
#J-18808-Ljbffr