Offered Salary 1000
Experience 4 Years
Full Job Description
Location: Hybrid working with travel to our Basingstoke office
Contract: Permanent, full-time
Salary: £41,000-53,000 per annum (depending on experience and skills) + discretionary annual bonus
Solution bringers. Day makers. Extra milers. We are the AA. And we keep everyone’s show on the road. There for our members wherever and whenever they need us, we’re always ready for anything. That’s why, for over 100 years, we’ve continued to evolve and adapt. Today, as the nation’s number one motoring organisation, we offer a range of excellent products and services to millions of customers. As a Cyber Security Engineer, you’ll always go the extra mile for our members. In return, we’ll go the extra mile for you, with excellent training, support and development opportunities.
This is the job
Joining The AA as a Cyber Security Operations Engineer, you will be hands on with configuring and maturing the AA’s Security services and IT platforms; these can be a range of Microsoft Cloud environments through to on-premise network devices, ensuring secure setups and integrations with detection and response capability.
You will also be responsible for implementing new security applications and infrastructure, creation and maintenance of operational documentation as well as liaising with other IT teams/3rd parties to support on issues, feature requests and/or licensing.
We are looking for a skilled Security Analyst/Engineer with a strong track record of successfully delivering and supporting security systems throughout the entire product life cycle.
What will I be doing?
Configure and maintain the AA’s Security Services/Tooling to protect, detect and respond from/to unauthorised and/or malicious activities across multiple platforms i.e., MS Security Technologies, AWS Cloud, Firewalls, Cloud Internet Protection etc.
Market our Security Operations to the wider AA business, championing and embedding the Security Culture
Take a Threat-led approach to Security Operations Engineering, contributing to Threat Assessments / Modelling to drive appropriate, cost effective, detection and response
Drive Automation and Integration across the estate to form a modern and efficient Security Operations capability
Assess the posture of platform security and configuration of security tooling against best-practice and implement changes against a measurable roadmap
Leverage understanding of Operating Systems: Windows, Unix/Linux and network devices in support of identifying security incidents to review risk profiles
As part of a wider Security team, you may also be involved with the following:
Proactive threat analysis, vulnerability identification and remediation, and network/host vulnerability scanning
Analyse potential cyber threats from a variety of intakes taking appropriate response actions to include threat containment and/or escalation
Participate in major incident reviews, post implementation reviews and problem reviews to assist with the identification, review and analysis of security incidents or threats to service
Maintain current situational awareness of trends in cybersecurity threats and specific AA organizational threats
What do I need?
Significant hands-on experience within IT Cyber Security on an array of platforms and environments both cloud and on premise based
Networking knowledge i.e., OSI Model, TCP/IP, DNS, HTTP, SMTP, System Administration, and Security Architecture
Current knowledge of Segmentation / Enterprise EDR / Anti-Virus, IDS, Full Packet Capture and Host/Network Threat Analysis and Threat Monitoring Procedures
Ability to work as a team as well as independently, prioritise tasks accordingly whilst delivering accurate detail
Clear and concise communication skills with both technical and non-tech savvy individuals
Passionate about cyber security including trends, market analysis, threat forums and delivering continuous improvement tools/strategies through best practice
Technical skills in any of the following: Scripting/Coding, M365, AWS, Micro-segmentation, SIEM Technology
IT Cyber Security Certifications i.e., Microsoft, CISSP, CCNA, SSCP, CEH