Cyber Security Operations Lead
Venesky-Brown’s client, a public sector organisation in Edinburgh, is currently looking to recruit a Cyber Security Operations Lead for an initial 12 month contract on a rate of £525-£575/day (Outside IR35). This role will be based in Edinburgh – home working will be considered subject to attendance where needed.
Responsibilities:
– Use understanding of digital systems and attack frameworks to apply theory to practice.
– Be aware of the current cyber threat landscape and industry best practices and standards.
– Lead on improvement to coverage and depth of security monitoring and vulnerability scanning
– Design vulnerability data gathering and prioritisation procedures
– Act as technical escalation point for analysts on significant incidents, investigations, including hands on experience
– Establish procedures for intelligence ingestion and threat hunting
– Working with architects and interpreting designs to ensure strong handover to SecOps during new service go live.
– Recommendation and implement improvements to SecOps processes and tools (e.g. automation of workloads)
– Design security KPIs and SecOps management reporting, and the gathering of data in support of them
– Own completion and accuracy of all SecOps-related product delivery evidence
Essential Skills:
– Security monitoring service delivery and improvement
– Vulnerability detection service improvement, finding prioritisation and reporting.
– Ability to communicate on technical issues with users and senior managers
– Recent experience in incident response
– Ability to work well in small team with internal colleagues and suppliers
– Ability to self-start, accept ownership and oversee organisation wide protective responsibilities
– Ability to share knowledge and experience with colleagues, including mentoring of analysts
Desirable Skills:
– Experience with Qualys, M365 Defender, Sentinel, Fortinet, Power Platform
– Microsoft – on-premise and cloud related engineering level certifications
– SANS or similar security operations certifications
If you would like to hear more about this opportunity please get in touch.
Responsibilities:
– Use understanding of digital systems and attack frameworks to apply theory to practice.
– Be aware of the current cyber threat landscape and industry best practices and standards.
– Lead on improvement to coverage and depth of security monitoring and vulnerability scanning
– Design vulnerability data gathering and prioritisation procedures
– Act as technical escalation point for analysts on significant incidents, investigations, including hands on experience
– Establish procedures for intelligence ingestion and threat hunting
– Working with architects and interpreting designs to ensure strong handover to SecOps during new service go live.
– Recommendation and implement improvements to SecOps processes and tools (e.g. automation of workloads)
– Design security KPIs and SecOps management reporting, and the gathering of data in support of them
– Own completion and accuracy of all SecOps-related product delivery evidence
Essential Skills:
– Security monitoring service delivery and improvement
– Vulnerability detection service improvement, finding prioritisation and reporting.
– Ability to communicate on technical issues with users and senior managers
– Recent experience in incident response
– Ability to work well in small team with internal colleagues and suppliers
– Ability to self-start, accept ownership and oversee organisation wide protective responsibilities
– Ability to share knowledge and experience with colleagues, including mentoring of analysts
Desirable Skills:
– Experience with Qualys, M365 Defender, Sentinel, Fortinet, Power Platform
– Microsoft – on-premise and cloud related engineering level certifications
– SANS or similar security operations certifications
If you would like to hear more about this opportunity please get in touch.
