Security Operations Engineer

Who we are

We are Hastings Direct – an agile, data and digitally focused general insurance provider who offer services to the UK car, van, bike and home insurance markets.

It’s our attitude and the way we run our business that makes us different. All of our actions are based on our 4Cs ways of working which means we focus on getting it right for our colleagues, customers, company and community.

As well as working on our 4Cs principles we also have the ambition of becoming the UKs leading digital insurer and believe that we’re built for the way that customers buy general insurance both today and in the future; with our key focus being around the use of data and digital capabilities going forwards.

The Role

We are looking for an experienced and passionate cyber security professional to join our IT Sec Ops Team as a Security Operations Engineer.

Within this role you will become a pivotal member of the IT Security Operations team by aiding in the deployment, upkeep, and management of technical security solutions, helping to ensure that these are run effectively in conjunction with other Internal Operations and Engineering teams and/or relevant 3rd parties.

You will also routinely investigate vulnerabilities within our common applications as well as looking into less frequent/unusual events in any of our diverse technology stack. And support the delivery of Security Operations projects which will give you a platform to showcase your planning/prioritisation skills and your technical leadership capabilities within these project runs.

We need a calm, self-starter who can balance priorities and meet conflicting deadlines within a fast paced and dynamic environment. Who is capable of working on there own initiative or as part of a collaborative team.

This position is a hybrid role which offers mostly remote working, however occasional travel to one of our office sites (Bexhill, London or Leicester) would be expected.

What you will do

  • Create solutions to technical infrastructure vulnerabilities such as those discovered in pentests or vulnerability scans
  • Function as the technical leader for delegated Security Operations projects.
  • Evaluate new security technologies and products and perform engineering work and analysis to determine if these solutions should be pursued, and aiding any subsequent implementation as required
  • Ensure security controls continue to be effective by assisting with an ongoing roadmap of work to review and remediate existing and new technologies at Hastings.
  • Lead routine pentests of our systems and technologies by engaging with our pentesting vendors and all relevant internal stakeholders through to managing the secure resolution of issues identified.
  • Assist with the creation of detailed metrics and reports based on information security risk analysis to reduce and mitigate risk, including RAG based status tracking, security dashboard reporting and trending for senior leadership.
  • Identify and assist with the implementation of opportunities for innovation and continuous improvement in the delivery of appropriate Cyber Security solutions.
  • Interpret the information security reference and governance frameworks and liaise with all relevant parties to ensure solutions are maintained securely and appropriately.
  • Be responsible for the triage and response to the IT Security Operations Team’s daily tasks.

What we are looking for

  • 3+ years of hands-on technical/security engineering experience with exposure to Linux and Windows Operating Systems, AD, AAD, DNS, GPOs, Conditional Access Policies, Network Protocols, PKI, proxies, access management, etc.
  • 2+ years administration experience of a wide range of security products such as access audit tools, EDR, IDS/IPS, DLP, Firewalls and Web/App gateways, WAFs, encryption, DDOS protection, etc.
  • Experience of using SIEM systems and conducting/leading associated incidents and investigations.
  • A logical thought process and the ability to innovate and be creative during a cyber investigation.
  • An understanding and, ideally, practical experience of enterprise information security and knowledge of some standards including Cyber Essentials, ISO 27001, PCI-DSS, Data Protection Act and GDPR.
  • An understanding of tools and techniques used by ethical hackers including vulnerability testing tools and methodologies and network defence tools and methodologies.
  • The ability to demonstrate a keen interest and deep passion in Cyber Security generally, including knowledge of current and evolving Cyber threats and trends.
  • Experience with security testing tools, development of threat assessment strategies and security testing methodologies is desirable.
  • Cyber Security certifications such as CompTIA Security + or equivalent (also preferably with a desire to achieve further certifications such as CISSP)
  • Enterprise Product Security Vendor certifications such MS AZ500 (desirable)
  • A degree in a relevant subject such as Cyber or Information Security, Information Forensics, Software Engineering, Mathematics, or Chemistry (desirable)

What we will give you

  • Highly competitive base salary
  • Car allowance
  • Up to 20% maximum bonus earning potential
  • Pension contribution 1:1 match (up to 10% contribution)
  • 27 days holiday and bank holidays (plus buy and sell up to 5 days)
  • Life Assurance
  • Private Medical Cover
  • Discounted Hastings Direct products

Hastings Group is an equal opportunities employer which means we treat people fairly. We welcome applications from all suitably skilled persons regardless of their gender, age, race, disability, ethnic background, religion/belief, sexual orientation, gender reassignment or marital/family status. Please also note that we have a thorough referencing process, which includes credit and criminal record checks.

Job Information

Job Reference: 60006790_1649149429
Salary: Negotiable
Salary From: £
Salary To: £
Job Industries: Financial Services
Job Locations: City of London, London
Job Types: Permanent
Job Skills: Hastings Direct
Apply Now

Accessibility

Company Search

Job Search

Job Search

Company Search

Login/Register

Login

Register


Contact

Stay connected!