Senior Cybersecurity Operations Engineer (CSOC) - SIEM / SOAR / EDR - Edinburgh (hybrid) – Permanent
Evolve IT Recruitment is currently recruiting for a Senior Cybersecurity Operations (CSOC) Engineer to work with a leading organisation in Edinburgh that has one of the best employer reputations in Scotland, an employer with a customer focused culture where they value collaboration and ingenuity and their success is underpinned by their extensive use of technology to drive success in their business.
Due a recent internal promotion, our client is looking to hire a key member to their cybersecurity team, acting as subject matter expert on Security Information and Event Management (SIEM), Endpoint Detection and Response (EDR), and Security Orchestration, Automation, and Response (SOAR) - you will drive creativity and innovation within the team and will ensure the highest level of defensive security capabilities as possible. A key part of the role is research and comprehending common attack patterns, modern tactics, techniques, and procedures (TTPs) - developing and implementing creative custom detections with automation to increase the efficiency of detection across the organisation.
Acting as a Technical Lead you will be responsible for leading projects related to the research, evaluation, and implementation of a range of security technologies, and you will be a key member of the incident response team dealing with any security incidents. Working together with your colleagues across the business you will help create an inclusive security culture and will be adept at explain technical security issues in terms that can be understood by all, regardless of their technical knowledge.
Our client is offering a great salary and benefits package for the successful candidate, including 15% pension contributions, annual bonus, private health cover, and an enhanced maternity / paternity package - if the role sounds of interest then please email kevin@evolve-it.com today.
Responsibilities:
- Be a key figures in developing and improving the security capabilities of the organisation, especially around the leveraging of automation to improve speed and efficiency of detection
- Supporting security infrastructure and tooling across technologies such as SIEM, SOAR, XDR, AV, NDR, and VM
- Evaluate, review, and implement new security technologies that improves the organisation's security position
- Deliver cybersecurity expertise across the business, leading / supporting security and business change projects
- Act as a cybersecurity champion across the organisation, building a growing awareness amongst employees of different security risks and the best practices to follow
- Assist in dealing with investigations into security alerts as and when required and participate in cyber security incident response team (CSIRT)
- Articulating complex security issues across different departments to both technical and non-technical stakeholders
Essential:
- Extensive experience working in a cybersecurity role at an enterprise level organisation or consultancy organisation
- Experienced in IT security best practices and able to demonstrate a high level of proficient in common attack types and patterns, able to understand tactics, techniques, and procedures - ensuring high-level detection success
- Experience using SIEM and SOAR solutions such as Splunk and XSOAR, or similar tooling
- Experience working with End Point Detection tools such as Defender, CrowdStrike, Huntress, Heimdal, or SentinelOne
- Knowledge of Linux systems administration (RedHat or CentOS) and Windows Server, able to understand the underlying infrastructure of internal systems and potential security weak points
- Any scripting experience such as Bash, Python, or similar scripting languages
- Any security or technical certifications such as CISSP, OSCP, Security+, SC-200, CySA+, CCNA, AZ500, RHCSA
Benefits Details:
- Superb pension package
- Annual bonus scheme
- Private health cover
- Enhanced maternity / paternity package