News Uk Jobs – Senior Detection Engineer In Birmingham

Overview

Position Title: Senior Detection Engineer

Company: News UK

Location: Birmingham, UK

Job Description:

As a Senior Detection & Response Engineer you will play a key role within our Global Cyber Defense team to advance our in-house threat detection and response capabilities, providing support to the cybersecurity program initiatives focusing on reducing our cyber risk exposure.

Responsibilities:

• Collaborate with cross-functional teams to improve threat detection signals, deploy new tooling, and improve response capabilities.
• Be an active member of the security incident response team, providing third level support, performing investigations and assisting with incident response activity.
• Identify opportunities to optimize and correlate detection methodologies
• Leverage extensive experience in threat detection, penetration testing, forensics response to assist with maturiting overall cyber defense capabilities.
• Partner with additional information security teams to scale operational capabilities and provide preventative control feedback to relevant stakeholders
• Develop threat hunting activities using intelligence, analysis of anomalous log data and results of brainstorming sessions to detect any possible existence and eradicate the possibility of an adversary in our network.
• Participate  in war-gaming and tabletop activities as part of red/blue team exercises to strengthen our defenses, test playbooks and mature the overall cyber defense capabilities.
• Partner with product security teams to ensure the necessary detection controls are implemented to identify threats.
• Perform threat management, threat modeling, identify threat vectors and develop use cases for prevention and security monitoring.
• Engage in ongoing research in security tools, techniques, and procedures, as well as advanced Threat Detection initiatives based on aggressive security principals, machine learning algorithms, and threat mitigation techniques.
• Provide technical and thought leadership within Cyber Defense by: Teaching other team members and colleagues about both traditional and innovative ways to detect, analyze, and mitigate security incidents and other anomalies.
• Continuous improvement of Cyber Defense practices and approaches, including authoring SOPs and training documentation
• Incorporate the adoption of orchestration and automation technologies in the event analysis/ incident response process. Using SOAR platform.

Requirements:

• Familiar with tactics, techniques, and procedures commonly employed by threat actors, and their motivations
• Strong technical communication skills (oral and written) including experience briefing executive management and desire to work with clients to solve complex security issues, including at times in crisis situations
• Experience briefing senior-level leadership, and conveying technical subject matter to audiences of varying backgrounds and skill levels
• Full-stack knowledge to understand modern attacks that involve networks, infrastructure, compute and applications
• Familiarity with scripting/developing in modern languages like Python, Go, Ruby
• Understanding of modern application architectures (serverless, mobile, distributed…)
• Demonstrated experience in Cloud IR as a senior security support engineer or SOC Engineer / Analyst
• Public/Private Cloud Experience (AWS, Azure, Google Cloud, VMware)
• Understanding of host based security and tooling
• Ability to identify network attacks and systemic security issues as they relate to threats and vulnerabilities, with focus on recommendations for enhancements or remediation
• Strong analytical skills/problem solving/conceptual thinking/attention to detail.
• Ability to work effectively with peers and multiple levels of management.
• Highly self-motivated with the ability to identify areas of focus and tackle new challenges with or without direction
• 2-4 Years Specializing in incident response and system monitoring and analysis, leading investigations and coordinating security response team activities.
• At least 4-5 years of cyber security experience.
• Bachelor’s degree in computer science, information assurance, MIS or related field, or equivalent work experience.
• Experience with security frameworks and privacy compliance requirements (ISO 27001, NIST CSF, GDPR, etc.).
• Experience in conducting risk assessments that protect the business and adhere with compliance and privacy laws.
• Knowledge of multiple computing platforms, including Network, Windows, OSX, Linux, Unix, networks and endpoints.
• Expertise using security correlation and Analytics / SIEM platforms