Senior Security Engineer Threat Intelligence

  • Job Type: Permanent
  • Location: UK UK
  • Date Posted: July 9, 2021

Hello! Interested in applying? We welcome you to fill out your details in the fields laid out below so we can get your CV straight to our recruiter:

  • Thank you for giving us your email address! We will use it to contact you about this role, and we will also send you confirmation of your application.
  • Please tell us your nationality so we can assess whether you are able to work in the roles location, or assess the possibility of arranging a suitable visa.
  • Allowed files: .doc, .docx, .pdf
    Drop files here or
    Accepted file types: doc, docx, pdf.
    • Read about how First Point Group uses the data that you provide by clicking here: First Point Group Policies and Statements

    Senior Security Engineer Threat Intelligence
    UK, FullyRemote

    FPG Cyber is currently recruiting on behalf of our prestigious client, a World & Gartner Quadrant Leading MDR Provider for a Senior Threat Intelligence /Security Engineer, the role is fully remote, candidates must be eligible to work in the UK. Our client is an innovative Cyber Leader who are growing rapidly, they are on a mission to eliminate the fear of impact from cyber threats and attacks. If you aspire to become a team leader or want to get into Cyber management, then this is your chance! A fantastic opportunity to excel in your career & grow, for someone who wants autonomy in their next role with the opportunity to have their ideas heard & acted on.

    The Role

    The Ideal candidate will work with our clients Threat Intelligence teams, reporting to their Content Security Director, the role will be to guide & mentor 8 Cyber Threat Engineers, in order to enhance our client’s Indicator of Compromise (IoC) detection
    Team leaders blossom into Senior Security Engineers who then teach, guide & mentor junior developers, their teams are responsible for designing, developing and at times programming the tools needed to run the content factory, which daily produces the signatures to detect Cyber-attacks and IoC on the wire (IDS) and in log files
    You will need to understand the details of TCP/IP protocols, log formats & relish the healthy tension between overly broad patterns (too many False Positives) and narrow patterns (too many False Negatives)

    Essential:
    Safeguard content reaches the customer as fast as possible, for both Threat & Attack analytics, as well as Indicators of Compromise Detection Develop, Design & program methods, processes, and systems to automate routine and complex tasks for the day to day work of producing content
    Weekly 1-1 with TI team-members to address concerns/remove obstacles to productivity
    Compile and present productivity graphs
    Prioritize conflicting objectives
    Set objectives and vision on a team and individual level
    Guarantee that the Content team keeps pushing the boundaries for what the ideal Security team looks like
    Hands-on approach to Cybersecurity, a technical inspiration for all
    Support Core Metrics (KPIs) for each supported product
    AWS knowledge and skills are essential
    Our client is a 24×7 leading worldwide SaaS/MDR Company – They work to ensure that their Threat Detection works well, to avoid staying up all night & fixing it!

    Required Skills/Experience:

    Over 5 years of hands-on experience as a TI Security engineer, with more than 5 years of daily involvement in Cyber Security with an interest in DevOps management
    Cyber Security Protocols
    Experience working with scripting languages
    Willingness to learn new skills in development, management & Cyber
    Ability to work in fast-paced environments that implement an agile development methodology
    Computer Security / SOC Experience
    Understanding of TCP/IP Protocols (udp/icmp/http etc)

    Preferred Skills:

    BSc or MSc in Computer Science, Computer Engineering or similar field, or equivalent
    Solid Linux &Windows system administration experience
    Team leadership experience
    Ability to progress & support cloud-based environments, deployed in public, private, and hybrid cloud
    Python Experience

    Start date is = immediate (notice period accepted for the right candidates) please forward your resumes to Tom Layzell at FPG Cyber tlayzell@firstpointgroup.com +44 77 46 73 77 11