Technical Operations & Security Lead - Edinburgh - GBP55k
|Posted on||3rd January 2018|
|Salary/Rate||£40000 - £55000 per annum|
About this job
This is a consultative role actively working with the internal technical teams on security best practice, risk mitigation and preventative implementation. You will leverage various internal platforms and use your in-depth understanding of exploits and vulnerabilities to secure services within our client's corporate and datacentre environments.
You will work closely with the group technical teams such as IT, Managed Services, and Product Development using a security mind set to support them in an ongoing program of planned, preventative and remediation work. You will be accountable for manging exploits and vulnerabilities for our networks and data security in these business areas as part of our operational defensive capability. To be considered you will have:
Experience implementing and managing security monitoring IPS & IDS to deliver the end to end security operations monitoring and alerting solutions to ensure real-time awareness of security risks, threats and vulnerabilities.
*Able to deliver and manage security and vulnerability best practices in software development and test based processes
*A good understanding of networking protocols, services (FTP, HTTP, SSH, SMB, LDAP, etc.) and database structures and queries
*Experience user of scripting languages (SQL, Python, PHP, Perl, Bash, C, C++, C#, Java etc)
*Experienced user of analysis tools (tcpdump, Wireshark, ngrep, Nessus, nmap, Burp etc.)
*Leading security incident response and operational business readiness.
*Knowledge and experience of conducting forensic analysis to identify indicators of compromise or future threats.
*Experience with log file reviews, data correlation and analysis.
*Awareness of ISO27001, NIST standards and GDPR.
*Knowledge of Unix, Linux, Windows, etc. operating systems.
Duties will include
*Creating a SecDevOps way of working and leading the business operationally
*Acting as a key stakeholder between Security and Product Development
*Ensure security findings with IT and Product Development are resolved and mitigated
*Perform ongoing internal technical security reviews / vulnerability assessments on web-based applications, networks and computer systems (OWASP top 10)
*Conduct physical security assessments of servers, systems and network devices
*Pinpoint methods that attackers that could use to exploit weaknesses and logic flaws
*Review, define and implement information security solutions
*Leading the improvements for operational services assisting the relevant business areas when required
*Work with all technical teams on improvements for security services, including the continuous enhancement of existing processes, methodology material and supporting assets.
*Proactively review with the technical teams the ongoing program of change to mitigate against vulnerabilities and corporate risk in the solutions / services offered by the business.
*Provide feedback and verification as an organization fixes security issues
Our client is one of Scotland's fastest growing technology companies who offer a salary up to £55,000 plus excellent benefits.
For further details, contact Magnus Wikström on 0131 718 5023 or e-mail firstname.lastname@example.org.