We’re looking for a Senior Security Specialist to join us in Reading.
Reporting into our Senior CERT Manager, you will help continue to mature the way in which the organisation manages and handles the operational security incidents of our ever-evolving business. The person will provide a passion and deep technical understanding of how to investigate and handle cyber incidents. You and the team will support the entire portfolio of Liberty Global across our global network to detect, respond, remediate, and recover from cyber-attacks, but also proactively defend against them through Intelligence Led Threat Hunting.
What will you be doing?
The role will encompass being a Security Subject Matter Expert (SME), leading, guiding, and inspiring the team of security analysts, with a view to developing these skills amongst the team whilst also acting as a technical escalation point. As such, the role requires a deep technical understanding of intrusion detection and analysis, incident response, vulnerability management, and infrastructure.
1. Driving forward the technical skill set of the team by developing threat hunting, adversary emulation, leading-edge threat mitigation methodologies, and security use cases.
2. Understand complex IT environments with a broad range of knowledge around networking, system administration, database platforms, and develop defensive methodologies around likely methods of attack.
3. Experience in analysing a wide range of log sources, data normalization, and querying of data using analytical platforms (e.g., Splunk, Hadoop, Elastic, Kibana, MDE, and MCAS).
4. Identification of malware types, infection methods, providence, and objective of the malware. This will also require extraction of IoC’s and TTP’s.
5. To assist and develop investigations and respond to security incidents.
6. A self-starter is required for this role, and the successful applicant will be able to demonstrate taking ownership of and responsibility for resolving issues.
7. They will also be able to work as part of a wider team, guide a team, and be confident in making decisions.
The role will be predominantly Mon-Fri office hours, although some out-of-hours support is envisaged.
We tend to look for people with:
1. Demonstrated experience of managing, investigating, and responding to cyber incidents.
2. Deep knowledge and understanding of coordinating cross-organisational responses to security incidents.
3. In-depth knowledge of technical security systems, security architecture, security technology, and associated penetration testing and Security Event Management methodologies.
4. In-depth knowledge of Splunk queries, dashboarding, use case creation, and Enterprise Security.
5. In-depth knowledge of Cyber Security Methodologies including the Cyber Kill Chain, Mitre ATT&CK Framework, NIST, MITRE Def3nd.
6. Ability to identify developing patterns and trends in data and provide incident root cause analysis, with a view to identifying and influencing future prevention by maintaining the Incident knowledge base.
7. Experience of other security technologies & defences such as Firewalls, Snort, Bro, Intrusion Detection System (IDS) monitoring and custom rule creation (YARA), TCP/IP Networking, WireShark, TCPDump, Netflow analysis.
8. In-depth understanding of IT systems and technologies (e.g., Linux and Windows operating systems, E-Mail, Proxies, Endpoint Protection).
9. Working knowledge of SIEM architecture, XDR, and Vulnerability Management, Incident Response tooling such as Hive.
10. Sandboxing technologies such as Cuckoo and Malware reverse engineering (e.g., IDA Pro, ole debugger), and a good understanding of REMnux.
11. Understanding DFIR toolsets (e.g., Volatility, SIFT Workstation) memory and file system analysis, and attack vectors.
12. Knowledge of Data Protection (GDPR) and its role within a business. Technical & Management reporting to demonstrate the effectiveness and value of the team's work.
13. Global Information Assurance Certifications (GIAC) e.g., Certified Incident Handler (GCIH), Certified Intrusion Analyst (GCIA), Reverse Engineering Malware (GREM) would be an advantage.
What’s in it for you?
Competitive salary + Bonus.
25 days annual leave with the option to purchase 5 more.
Access to wellbeing and mental health benefits such as the Calm app, personal medical, critical illness cover, and dental insurance.
Matched pension contribution up to 10%.
Access to our car benefit scheme.
Access to our online learning platform to continue to develop and grow your career with us.
The chance to join an innovative, fast-paced, and passionate team.
Who we are:
We’re building Tomorrow’s Connections Today, bringing people together through the power of our technology.
Liberty Global is a world leader in converged broadband, video, and mobile communications and an active investor in cutting-edge infrastructure, content, and technology ventures.
With our investments in fibre-based and 5G networks, we play a vital role in society, currently providing over 85 million fixed and mobile connections and rolling out the next generation of products and services while readying our networks for 10 Gbps and beyond.
We’re creating national champions, combining the best broadband and mobile networks under brands such as Virgin Media-02 in the UK, VodafoneZiggo in The Netherlands, Telenet in Belgium, Sunrise in Switzerland, Virgin Media in Ireland, and UPC in Slovakia.
Liberty Global Ventures, our global investment arm, has a portfolio of more than 75 companies and funds across content, technology, and infrastructure, including strategic stakes in ITV, Univision, Plume, Lionsgate, and the Formula E racing series.
Our scale enables us to transfer knowledge and expertise across our operations and investments, creating a dynamic family of brands united in the pursuit of innovation and excellence.
And we’re prioritising diversity, equity, and inclusion in our workplace and communities while reducing our impact on the environment. We are using technology as a force for good; for our people, our partners, and the planet.
Liberty Global is an equal opportunity employer. We embrace diversity and are committed to creating an inclusive environment for our people. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process. We’re 100% committed to having a workforce that represents every part of our society. So we’re keen to hear from candidates of all backgrounds and circumstances.
Additional information: Employment type: Full-time
#J-18808-Ljbffr