About the Team
The Company is creating a new Security Operations Centre, SOC, to ensure a coordinated response to the increasing cyber threats to the business. The Server and Network security specialist will support the Security Operations Lead in delivering core cyber defence services.

Key to the role will be specialist security delivery expertise within the Cyber Security Incident Response Team (CSIRT) that will provide cyber defence protection. The SOC and CSIRT mission is to provide specialist cyber defence protection to The company's employees across the globe. The Role
The SOC Infrastructure Security Specialist will deliver core cyber security capability including bench marking security standards, security information and event management, vulnerability analysis, security incident investigation and response to support the company in increasing cyber resilience.

Your responsibilities will include
• Lead within the SOC team for all aspects of security relating to Server and Network infrastructure technologies both physical and cloud based.
• Rapid response to cyber security incidents as part of the Company's CSIRT virtual team.
• Delivery of high-quality, prioritised, and up-to-date information about the security threats that are relevant to The Company.
• Collaborate with infrastructure maintainers to ensure secure configuration of infrastructure which supports the Company.
• Collaborate with cyber defence leadership to inform and influence good security working practices • Operate as Server and Network Security Operations Lead for cyber security.
• Deliver and manage baseline security standards for Servers and Network Infrastructure.
• Support the SOC team to optimise the use of cyber security tools to protect the Company's Infrastructure from cyber-attacks and security incidents.
• Lead on the introduction of new technologies into Security monitoring and ensure the ongoing effectiveness of security monitoring related to servers and network infrastructure.
• Deliver specialist security support to core Company functions including asset, configuration, patch, and vulnerability management.
• Support cyber exposure reduction in driving remediation of vulnerabilities within business units.
• Deliver specialist investigation and analysis on cyber security incidents to support the Cyber Security Incident Response Team (CSIRT).
• Support the Chief Technology Officer and Design Authority for server and network operational security.
• Deliver server and network expertise into Security operations including SIEM, SOAR, EDR and other services.
• Deliver specialist security support into the Company's ITIL processes.

Essential skills and experience
• Substantial Experience (10+ years) working with Network and server security.
• Highly Experienced (5 to 10 years) in cyber security to support the identification, prevention, and remediation of cyber risks.
• Highly experienced in secure server and network system design, configuration, and deployment.
• Highly experienced in implementing specialist security frameworks including CIS Benchmarks.
• Strong knowledge of network topologies and protocols.
• Knowledge of operating system security windows, Unix and Mobile.
• Experience in SIEM tooling including Sentinel and Splunk. Open-Source capabilities, such as Elastic is desirable.
• Experience in end-to-end information security incident management, mitigating and addressing threat vectors including but not limited to Advanced Persistent Threat (APT), Distributed Denial of Service (DDoS), Phishing and Malware.
• Experience with common security enforcing functionality including Intrusion Detection Systems (IDS), Intrusion Prevention Systems (IPS), Web Application Firewalls, Network and host-based Firewalls, VPNs, Log analysis and Security Information and Event Management (SIEM) systems.
• Security experience of working in Cloud environments such as Azure, AWS & GCP.
• Security experience of working in physical Data Centre environments.
• Understanding of threat-based frameworks such as MITRE ATT&CK.
• Good understanding of information assurance standards and frameworks including ISO 27001, Cyber Essentials/Essentials Plus, GDPR.
• Vendor Security accreditation such as Cisco, Check Point and Microsoft.
• Strong stakeholder, relationship management and communication skills.
• Must have or be able to obtain UK security clearance.

What you'll get in return
Flexible working options available.

What you need to do now
If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now.
If this job isn't quite right for you but you are looking for a new position, please contact us for a confidential discussion on your career.