Technical Lead, Security Platforms

About The Position

Requirements

• Extensive security knowledge, with specific expertise in Endpoint Detect and Response and Security Automation tooling.
• Experience in a 24/7 security operations environment emphasising reliability and system availability.
• Understanding of current security threats and other challenges, as well as frameworks like MITRE ATT&CK.
• A collaborative approach to solving technical challenges and improving security.
• Strong attention to detail, organizational skills, program management skills, and a commitment to ensuring timely and accurate communications.
• Strong personal work ethic with excellent attention to detail and ability to deliver under pressure.
• A track record of succeeding in distributed, international teams.
• 7+ years of relevant security experience.
• Direct experience with incident response, threat detection, and relevant open source projects or commercial tools.
• Participation in an on-call rotation is required.

Nice To Haves

• Experience driving key projects and initiatives.
• Excellent understanding and working knowledge of current endpoint protection, information security and cyber security practices and techniques.
• Extensive knowledge of EDR and Security Automation technologies.
• Experience working on technology projects, including product evaluation, solution design, implementation and operationalisation.
• A qualification in information security or information systems may be beneficial.
• Experience with scripting, system integration, or light development would be beneficial.
• Security certifications may be beneficial (e.g., CISSP, ISSAP, relevant product certifications).
• Experience in financial services may be beneficial, or experience of leading technical teams.

Responsibilities

• Designing, configuring, and managing key security tools supporting Cyber Fusion Center colleagues.
• Guiding key projects and initiatives.
• Driving key projects and initiatives to improve current capabilities, drive operational adoption, and prepare for future growth.
• Working directly with Stakeholders and Business Units to define requirements and develop security solutions.
• Working with Vendors to implement new or additional capabilities in security platforms.
• Partnering within the Cyber Fusion Center to ensure security platforms meet operational needs, including in threat detection, incident response, threat hunting, and insider investigations.
• Owning the reliability, availability, and performance of specific platforms including working with vendors and other stakeholders to ensure platform health.

Benefits

• Our retirement savings plan (401K) with company match
• Insurance coverage including basic life, medical, dental, vision, long-term disability, and other optional additional coverages
• Paid-time off including vacation, sick leave, short term disability, and family care responsibilities
• Access to our Employee Assistance Program
• Incentive compensation including eligibility for annual performance-based awards
• Eligibility for certain tax advantaged savings plans
• Inclusive development opportunities
• Flexible work-life support
• Paid volunteer days
• Vibrant employee networks