Cybersecurity Threat Handler

Our client is seeking a Cybersecurity Threat Handler to join the Engineering and Technology Information Security team.

3 days in office in London

Salary is up to £80k base

Responsibilities

• Acting as a hands-on expert and builder for cloud-based technologies, ensuring security, performance, operability, and scale.
• Assisting as an internal specialist, facilitating the implementation of modern Front End technologies within technology and business teams.
• Building strong relationships with developers, technology teams, solution teams, and business application owners.
• Implementing and maintaining industry-standard protocols to strengthen our security measures.
• Developing and implementing innovative and differentiating cloud technologies.
• Collaborating and consulting with key technical experts, technology teams, and external industry groups to resolve complex technical issues and achieve our goals.

Required Qualifications

• Bachelor's degree or higher in MIS, CS, or a related field, or equivalent combination of education and work experience.
• 5+ years of experience in engineering and technology, preferably in Financial Services, Technology, or a related field.
• Experience analysing cybersecurity incidents using industry standard frameworks such as Cyber Kill Chain and MITRE ATT&CK.
• Experience handling cybersecurity incidents at each stage of the incident life cycle, including initial analysis, triage, containment, eradication, recovery, and postmortem.
• Strong knowledge of AWS Security, specifically in areas such as IAM, KMS, and Network Infrastructure.
• Expertise in analysing security events from Microsoft Windows endpoints with a deep understanding of operating system security.
• Experience handling incidents originating from Microsoft cloud-based services like Azure and Microsoft 365.

Preferred Qualifications

• Familiarity with AWS threat detection and logging services such as GuardDuty and CloudTrail, as well as industry standard Cloud SIEMs like DataDog.
• Proficiency in analysing security events within endpoint protection platforms like CrowdStrike Falcon.
• Ability to liaise effectively with SOC Analysts and Threat Hunters from our Managed Detection and Response vendor.
• Understanding of current cybersecurity threats, typical signs of attacks, and approaches to prevent and mitigate such incidents.
• Strong multitasking abilities and the ability to prioritize duties in a fast-paced environment.
• Excellent verbal and written communication skills.
• Effective influencing and consensus-building skills.
• Strategic focus on problem-solving.
• Strong teaching and mentoring skills.
• Exceptional presentation and communication skills.
• Willingness to occasionally travel outside of the primary work location.
• 2+ years of experience with AWS or other hyperscale cloud provider implementation.
• Extensive experience working effectively in a heavily distributed environment.
• Consulting experience is a plus.
• Demonstrated experience maintaining strong documentation.
• Ability to transfer knowledge to key team members and act as a valuable resource.
• Experience in providing on-call support and independently resolving technical issues.
• Ability to confidently interact with counterparts at all levels within the firm.
• Proficient in analysing and resolving complex issues.