We're looking to hire a Security Operations Engineer to enhance our security operations and ensure robust protection against sophisticated threats. This role will report into the SOC and IR Manager, this role is crucial for maintaining our Security Operations as a high-performing and resilient. You will be refining our SOC capabilities by monitoring network traffic, automating processes, analysing security incidents, manage security tools, and providing expertise to Security Specialists and SOC analysts. As the SOC Engineer you will collaborate with cross-functional teams to build defences, respond to incidents, and design strategies for robust cybersecurity posture. You will enhance SOC capabilities with cutting-edge technologies and automation tools. Collaborating with industry experts in cloud security, fraud prevention, and data analytics, and experimenting with SIEM, SOAR, EDR, and cloud-native security technologies. The role will involve the following:

• Security Engineering & Automation: Drive improvements in SOC workflows, automating enrichment processes using SOAR and automation tools, and developing playbooks for more efficient alert handling. Oversee the deployment, configuration, and tuning of SOC related security tools to enhance detection accuracy, reduce false positives, and manage end-to-end EDR operations.
• Cloud Security Monitoring: Analyse and manage security logs through the SIEM
• Security Monitoring & Threat Detection: Continuously monitor security alerts, events, and IoCs across all platforms. You'll build and deploy queries and scripts, and create dashboards and workflows to enhance visibility and reporting
• Proactive Threat Hunting: Develop and implement threat hunting procedures to proactively identify potential risks and vulnerabilities before they escalate.
• Incident Response: Enhance the IRP and Coordinate with the SOC team and cross-functional teams during the incident response lifecycle, focusing on containment, eradication, recovery, and post-incident analysis.