Location: Cirencester (hybrid office/remote working available – approx. 1-2 p/wk days in office)
This role offers a great opportunity to join an exciting and growing area of the Technology Services division, where you’ll be instrumental in supporting and advancing the operational security capabilities of the Cyber Security Team. You will take a lead role in our approach to security analysis and response at St. James’s Place (SJP), and you’ll be given lots of scope in defining the toolsets, processes and capabilities required to effectively deliver.
Key responsibilities will include managing security investigations that are initiated by managed security services (Security Operation Centre - SOC) or from events generated by our security tools, along with leading our response on more significant issues.
The role will be focused on leveraging the technology and capabilities we have deployed to finetune alerting, and to carry out security investigations, engaging with SJP teams and 3rd parties to resolve incidents.
What you’ll be doing:
Analysis and Incident Investigation Lead, ensuring threats escalated to the security team are appropriately assessed and investigated.
Primary point of contact for our Managed SOC service, ensuring alerts raised to the Security team are followed through and investigated.
Identifying opportunities for security improvements and work with relevant infrastructure teams to implement effectively.
Develop operational metrics and dashboard reporting for operational security posture.
Support operational security projects and where necessary attend Technical Design Forms and represent the Cyber Security team at Change Control.
Reviewing products that can advance our security capabilities, such as tools that support analysis, to detection capabilities and other emerging technologies.
Line management of two members of the team, as well as matrix management of 3rd Party SOC Team members.
What we’re looking for:
Good communication and presentation skills, translating technical content to wide range of stakeholders and reporting findings senior leadership.
Ability to work independently to delivery against personal and team objectives, liaising with relevant teams and expertise inside and outside of SJP to ensure the right result for SJP.
Good network knowledge and principles; LAN, TCP/IP, OSI Model, DNS, DHCP, Wifi, Routing, VPN, Firewalls, Load Balancing, IPv4