Endpoint Security Specialist - Flexible Hybrid working - Based in Hatfield - Circa £80K
Are you looking for an Endpoint Security Specialist role? Robert Walters is working in partnership with a leading technology provider to help them find a talented Endpoint Security Specialist. You will be building a new Security Operations Centre, SOC, to ensure a coordinated response to the increasing cyber threats to the business. The application security specialist will support the Security Operations Lead in delivering core cyber defence services.
As the Endpoint Security Specialist, you will support the Security Operations Lead in delivering core cyber defence services. You will also deliver core cyber security capability including benchmarking security standards, security information and event management, vulnerability analysis, security incident investigation and increasing cyber resilience.
What you'll be doing:
Lead within the SOC team for all aspects of security relating to Endpoint workplace technologies.
Rapid response to cyber security incidents as part of the brand's CSIRT virtual team.
Delivery of high-quality, prioritised, and up-to-date information about the security threats that are relevant to them.
Collaborate with endpoint maintainers to ensure the secure configuration of endpoints that support the company.
Collaborate with cyber defence leadership to inform and influence good security working practices.
Operate as Endpoint (Workplace) Security Operations Lead for cyber security.
Deliver and manage baseline security standards for all types of Endpoint devices.
Support the SOC team to optimise the use of cyber security tools to protect the company's endpoints from cyber-attacks and security incidents.
Lead on the introduction of new technologies into Security Monitoring and ensure the ongoing effectiveness of security monitoring related to Endpoints (Workplace).
Deliver specialist security support to core functions including asset, configuration, patch and vulnerability management.
Support cyber exposure reduction in driving remediation of vulnerabilities (patch, configuration and administration) within the brand's business units.
Deliver specialist investigation and analysis on cyber security incidents to support the Cyber Security Incident Response Team (CSIRT).
Support the Chief Technology Officer and Design Authority for Endpoint operational security.
Deliver server & network expertise into Security operations including SIEM, SOAR, EDR and other services.
Deliver specialist security support into ITIL processes.
What you'll bring
Experience in cyber security management systems to support the identification, prevention, and remediation of cyber risks.
Experience in implementing specialist security frameworks including CIS Benchmarks.
Highly experienced with the full range of Microsoft security products including Defender 365, Office 365 Advanced Security Management, Office 365 Data Loss Prevention, Office 365 Advanced Threat Protection (ATP), Windows Information Protection, Azure Active Directory Identity Protection and Sentinel.
Experience of EDR solutions such as Fireeye, Crowdstrike and MDE.
Strong knowledge of Operating systems, Windows, Unix and mobile.
Experience in end-to-end information security incident management, mitigating and addressing threat vectors including but not limited to Advanced Persistent Threat (APT), Distributed Denial of Service (DDoS), Phishing and Malware
Security experience of working in Cloud environments such as AWS, Azure, & GCP.
Vendor Security certifications such as Microsoft.
Strong stakeholder, relationship management and communication skills.
Must have or be able to obtain UK security clearance