Description
A leading Insurer based in Surrey are looking to hire a Snr Security Engineer for an initial 6 month Contract. Rate is £600 - £700 per day to the Umbrella company (Inside IR35).
Duties:
- Collaborate with third party SOC to mature current on premise logging/alerting. Focus will initially be on premise infrastructure moving into cloud capabilities further down the line.
- Creation of logging configurations to monitor privilege access, databases, Linux/Windows Servers
- Grow current cloud logging/alerting capability
- Hardening of Windows/Linux Assets
- Automation of Reporting
- Creation of Playbooks
- PoC of On-Premise/AWS SIEM (Azure Sentinel, Expel.IO, Sumo Logic etc)
Essential
- Methodical and analytical approach to solving problems
- A sound understanding of threats and threat vectors
- Understanding of Windows and Linux operating systems
- Knowledge of Scripting (eg PowerShell)
- Knowledge of a programming language (Python)
- Strong knowledge of Security Information and Event Management (SIEM) tools
- Knowledge of information security protection/detection and authentication systems, such as:
- Firewalls
- IDS/IPS
- Antivirus/EDR's
- Knowledge of standard network protocols (TCP, ARP, ICMP, DHCP, DNS, HTTP, SNMP)
Bonus points
- Exposure to MITRE ATT&CK & Threat Hunting
- Familiarity Data Leakage Prevention strategies, Internet Proxies/Mail Gateways/Secure Single Sign
- Familiarity with Metasploit or Khali tools
- working knowledge of CyberArk
- Knowledge of AWS Logging
- Exposure to Expel.IO, Azure Sentinel or Sumo Logic
If you have the required skills please contact me