Security Engineer - Security Operations

Lloyds Banking Group
£40000 - £50000 per annum + Bonus
06 Oct 2016
27 Oct 2016
Contract Type
Our vision is to make Lloyds Banking Group the best bank for customers. As the UK's largest retail and commercial bank, we have a footprint that touches nearly every community and household in the UK. That gives us a big responsibility to support the UK economy, and to put customers at the heart of everything we do. To achieve this, we also need to be the best bank for our colleagues and our communities - and we have a clear strategy in place to make this a reality. We are building on our many strengths: iconic brands, strong heritages and great people. To unlock the great potential in our business, we are becoming more efficient, more transparent, and more responsive to customers. Already the UK's largest community investor, we are giving even more back. Above all, we are putting customers first. An exciting opportunity has arisen to join a fast-paced, agile team, who are leading the way in the IT Cyber Security industry. LBG are investing significantly in this field and you will have a role that matters, responsible for the delivery of key services within the Security Operations team. You'll also be involved in the exploitation of our toolsets to shape and enhance these services and have the opportunity to be actively involved in our 3 year strategic Cyber Security Programme to improve the overall security posture of LBG. You will be supported by an IT Cyber Security subject matter expert in all security toolsets and techniques used within the team and be encouraged to broaden your security industry knowledge by attending external events, conferences and training courses, which is all part of the investment you can expect as a security expert. As a Security Engineer you'll have responsibility for the delivery of key services within Security Operations, consisting of technical support and development of the SIEM (Security Information and Event Management) toolsets, Operational Management, Service Level Management and Process Design. You will be developing and implementing threat monitoring use cases, produce and document appropriate detection, containment and response with clear, consistent technical documentation; you'll also actively participate in service and process management meetings. You'll assess efficiency and effectiveness of threat monitoring rules, investigate and resolve incident records, assess and resolve issues in relation to the SIEM and other monitoring toolsets. You will also provide technical guidance to peers and junior staff members, coach inexperienced team members and provide first-level advice on processes and procedures, support Senior Managers in colleague development and add to a culture of continuous improvement by generating and developing new or improved ways of working. We will need you to solid experience within Security Operations or a similar role with awareness of Cyber Security industry related best practice and a strong knowledge and understanding of Windows and Linux operating systems, TCP/IP and underlying network protocols and other technologies such as firewalls, proxies, IDS/IPS. You'll need extensive knowledge and experience of configuring an SIEM toolset (e.g. QRadar, Splunk)knowledge of scripting languages (Python, Perl, Shell, VBA etc) the ability to interpret use cases and configure threat monitoring rules in the relevant SIEM tool with diagnostic skills and an ability to analyse technical information from multiple sources. A strong quality and service focus, experience of managing and delivering changes, knowledge of threats from both internal and external sources and a demonstrable systematic and analytical approach to problem solving is essential with first class communication skills and the ability to effectively communicate complex messages to stakeholders at all levels. Holding CISSP, CISM, GIAC, CEH or similar security related qualifications would be ideal, combined with knowledge of Cyber Threat Detection and Hunting processes and procedures, Big Data solutions and ingestion methodologies and the processes used in forensics investigations. In return we offer an excellent remuneration and benefits package, a flexible working environment and a dedication to your development through career opportunities within one of the largest financial institutions in the UK and via our new Cyber Academy as part of our Cyber Awareness, Education & Training programme. This is for current/new colleagues offering a clear development path which will link to a recognised accreditation through the IISP (Institute of Information Security Professionals). If you have the skills and dedication we require we would love to hear from you… This job was originally posted as

More jobs like this