Advania UK
Senior Cyber Security Engineer About Us: We are the tech company with people at heart. At Advania, we believe in empowering people to create sustainable value through the clever use of technology. As one of Microsoft's leading partners in the UK, specialising in Azure, Security, Dynamics 365, and Microsoft 365, we have a proven track record of success in delivering transformational IT services. Position Overview: As a Cyber Security Engineer, you will play a pivotal role in safeguarding our organization's critical infrastructure and data against cyber threats. Your expertise in designing, implementing, and maintaining SIEM solutions will help us proactively identify and mitigate security incidents, ensuring the confidentiality, integrity, and availability of our systems. Responsibilities: - Work with the technical lead / SME for the CSOC and SIEM service offering by managing and improving the platforms to meet the requirements of the business and/or client - Assist in establishing and maintaining processes, tooling and metrics that help provide a high level of productivity, supportability, and operational readiness - Actively participate in project planning activities, service enhancements and change management controls - Ensure all security platforms are optimised to detect and prevent security threats across all on-premise and cloud environments to meet business objectives and regulatory requirements - Act as a technical escalation point and technical mentor for SOC Analysts and Senior SOC Analysts in delivery of our CSOC services - Work collaboratively with architects, infrastructure teams and key stakeholders inside and out of the business ensuring security and monitoring requirements are determined and implemented through onboarding or continuous improvement activities Qualifications & Experience: Professional experience of working in an Incident Response Team or a similar environment Knowledge of SIEM platforms such as Azure Sentinel, Microsoft Defender, Splunk, ArcSight, QRadar, or LogRhythm. Strong analytical and problem-solving skills with the ability to handle complex security incidents. Familiarity with regulatory frameworks and standards Click here for the list of benefits. This is a remote-first hybrid role. See here for details about our hybrid workstyle. This role requires eligibility to obtain security clearance (SC) , which requires UK citizenship and at least 5 years residency in the UK. If you have any questions on this requirement please ask the recruitment team during the process. Our Selection Process: We are committed to ensuring an equitable experience for all candidates, regardless of race, religion or belief, ethnic or national origin, disability, age, citizenship, marital, domestic or civil partnership status, sexual orientation, gender identity, or any other basis as protected by applicable law. Please do let us know if you'll need any reasonable adjustments as part of the selection process by highlighting these on your application form.
Senior Cyber Security Engineer About Us: We are the tech company with people at heart. At Advania, we believe in empowering people to create sustainable value through the clever use of technology. As one of Microsoft's leading partners in the UK, specialising in Azure, Security, Dynamics 365, and Microsoft 365, we have a proven track record of success in delivering transformational IT services. Position Overview: As a Cyber Security Engineer, you will play a pivotal role in safeguarding our organization's critical infrastructure and data against cyber threats. Your expertise in designing, implementing, and maintaining SIEM solutions will help us proactively identify and mitigate security incidents, ensuring the confidentiality, integrity, and availability of our systems. Responsibilities: - Work with the technical lead / SME for the CSOC and SIEM service offering by managing and improving the platforms to meet the requirements of the business and/or client - Assist in establishing and maintaining processes, tooling and metrics that help provide a high level of productivity, supportability, and operational readiness - Actively participate in project planning activities, service enhancements and change management controls - Ensure all security platforms are optimised to detect and prevent security threats across all on-premise and cloud environments to meet business objectives and regulatory requirements - Act as a technical escalation point and technical mentor for SOC Analysts and Senior SOC Analysts in delivery of our CSOC services - Work collaboratively with architects, infrastructure teams and key stakeholders inside and out of the business ensuring security and monitoring requirements are determined and implemented through onboarding or continuous improvement activities Qualifications & Experience: Professional experience of working in an Incident Response Team or a similar environment Knowledge of SIEM platforms such as Azure Sentinel, Microsoft Defender, Splunk, ArcSight, QRadar, or LogRhythm. Strong analytical and problem-solving skills with the ability to handle complex security incidents. Familiarity with regulatory frameworks and standards Click here for the list of benefits. This is a remote-first hybrid role. See here for details about our hybrid workstyle. This role requires eligibility to obtain security clearance (SC) , which requires UK citizenship and at least 5 years residency in the UK. If you have any questions on this requirement please ask the recruitment team during the process. Our Selection Process: We are committed to ensuring an equitable experience for all candidates, regardless of race, religion or belief, ethnic or national origin, disability, age, citizenship, marital, domestic or civil partnership status, sexual orientation, gender identity, or any other basis as protected by applicable law. Please do let us know if you'll need any reasonable adjustments as part of the selection process by highlighting these on your application form.
Flo Health
Camden, London
Salary 55,000 - 80,000 GBP per year Requirements: Effective and efficient threat triaging and investigative skills, - Excellent verbal and written communication skills including a focus on providing continuous, proactive communications to management, peers, and stakeholders while working on incidents. - Endpoint Detection and Response tools (Crowdstrike, FireEye, Cybereason, or similar), - Security Incident and Event Management (ElasticSIEM, Splunk ES, ThreatStack, ArcSight, IBM Qradar, ELK, or similar), - Digital Forensics and Incident Response (DFIR) tools (e.g. GRR, SIFT, Osquery, sysmon, Tripwire, or similar), - Operating systems (Windows, Linux, macOS). Responsibilities: Assists in managing company incident response program and playbook (Potentially working with an external SOC partner and leading them), - Rule detection engineering and threat research, - Assist in management and coordination of security incident management program, including hands on coordination of highly critical incidents, - Work with internal and trusted external intelligence related to indicators of compromise (IOC's) to be converted to actionable information which can be used to strengthen corporate network security posture, - Provide appropriate escalation of information which enables visibility and decision-making process of InfoSec leadership team, - Provide direct technical expertise into the ongoing development of the threat hunting program, - Manages critical incidents through all phases of the incident management lifecycle, - Participates in design of forensics and analysis standards, - Responsible for registration of incidents and accumulation of statistics and/or metrics related to incident management, - Authors and provides input into the production of incident reports, - Assist in development of incident response capabilities, training, and tool validation, - Managing incoming queues of threat reports or detections, - Managing investigations including organizing unstructured work and engaging resources across the company, - Owning an incident for it's full lifecycle, including post mortem reviews and follow up actions, - Communication and coordination with Operations, Engineering, Product Management, Legal, Customer Support, Compliance, and Security teams. Technologies: - AWS - Cloud - Docker - ELK - Linux - macOS - Network - Security - ElasticSearch More: We're quite proud of our achievements 250M+ downloads, 48M+ monthly users, by installs in the iOS Health category, 4.9 stars on the App Store (3M+ reviews), backed by 7 VCs, annual revenue at 9 figures, and a valuation close to $1B. and we're just getting started. We're Flo Health, a rapidly growing, Series B-funded HealthTech building the essential digital health partner of tomorrow to empower women, girls, and people who menstruate with the knowledge and support they need to stay well and live better. And there's never been a more exciting time to join us. Our cycle, ovulation and pregnancy tracking, educational content and anonymised community platform have been trusted for years by millions to help them feel more in control of their health every day. Now though, we're harnessing the power of data analytics and AI to build a smarter future, one where we all know our bodies better - we're set to become the world's favourite female health brand. Big plans, right? They absolutely are - that's why we're hiring.
Salary 55,000 - 80,000 GBP per year Requirements: Effective and efficient threat triaging and investigative skills, - Excellent verbal and written communication skills including a focus on providing continuous, proactive communications to management, peers, and stakeholders while working on incidents. - Endpoint Detection and Response tools (Crowdstrike, FireEye, Cybereason, or similar), - Security Incident and Event Management (ElasticSIEM, Splunk ES, ThreatStack, ArcSight, IBM Qradar, ELK, or similar), - Digital Forensics and Incident Response (DFIR) tools (e.g. GRR, SIFT, Osquery, sysmon, Tripwire, or similar), - Operating systems (Windows, Linux, macOS). Responsibilities: Assists in managing company incident response program and playbook (Potentially working with an external SOC partner and leading them), - Rule detection engineering and threat research, - Assist in management and coordination of security incident management program, including hands on coordination of highly critical incidents, - Work with internal and trusted external intelligence related to indicators of compromise (IOC's) to be converted to actionable information which can be used to strengthen corporate network security posture, - Provide appropriate escalation of information which enables visibility and decision-making process of InfoSec leadership team, - Provide direct technical expertise into the ongoing development of the threat hunting program, - Manages critical incidents through all phases of the incident management lifecycle, - Participates in design of forensics and analysis standards, - Responsible for registration of incidents and accumulation of statistics and/or metrics related to incident management, - Authors and provides input into the production of incident reports, - Assist in development of incident response capabilities, training, and tool validation, - Managing incoming queues of threat reports or detections, - Managing investigations including organizing unstructured work and engaging resources across the company, - Owning an incident for it's full lifecycle, including post mortem reviews and follow up actions, - Communication and coordination with Operations, Engineering, Product Management, Legal, Customer Support, Compliance, and Security teams. Technologies: - AWS - Cloud - Docker - ELK - Linux - macOS - Network - Security - ElasticSearch More: We're quite proud of our achievements 250M+ downloads, 48M+ monthly users, by installs in the iOS Health category, 4.9 stars on the App Store (3M+ reviews), backed by 7 VCs, annual revenue at 9 figures, and a valuation close to $1B. and we're just getting started. We're Flo Health, a rapidly growing, Series B-funded HealthTech building the essential digital health partner of tomorrow to empower women, girls, and people who menstruate with the knowledge and support they need to stay well and live better. And there's never been a more exciting time to join us. Our cycle, ovulation and pregnancy tracking, educational content and anonymised community platform have been trusted for years by millions to help them feel more in control of their health every day. Now though, we're harnessing the power of data analytics and AI to build a smarter future, one where we all know our bodies better - we're set to become the world's favourite female health brand. Big plans, right? They absolutely are - that's why we're hiring.
Adarma Limited
We are actively recruiting for a Security Consultant to work in our SOC Consulting services, within our Detection & Response (D&R) Practice. Working to support our customers assess their SOC capabilities, align on the right direction for meeting their business needs and completing the transformation journey. Remote UK locations are available with occasional travel to either Adarma offices and customer locations. What you'll do For our customers, you'll be both a true partner and a trusted source of expert insight and advice. Leading on either one critical security area or broader strategic challenges, you'll understand and analyse their needs, before recommending the right way forward. you'll also scope complex projects and support the development and implementation of new solutions. And you'll drive our own progress too mentoring a team and helping our pre-sales team develop new opportunities for us to make an impact. How you'll grow We have a strong culture of learning and development, so you'll have plenty of opportunity to grow in your specialist area and beyond. In time, you could progress to Senior Consultant, or focus more on your technical skills in a senior engineer or architect role. What you'll bring You have a solid knowledge of security operations processes and tools plus best practice in fields such as SIEM solution design, use case development, SOC maturity, XDR/EDR, Log Management and detection testing. Crucially, you re an outstanding communicator and relationship builder too, able to bring the best out of others. Previous experience in the design and reviewing of security detection solutions Experienced in the implementation and management of SIEM, EDR and NDR technologies (eg Splunk, Microsoft Sentinel/Defender, CrowdStrike Falcon/Humio, Google Chronicle, SentinelOne, ArcSight, QRadar, Logrythm, Vectra, ExtraHop, etc) Previous experience in designing and implementing detection and response use cases with data source analysis and onboarding Experience of complex and/or large-scale security detection solutions Previous project experience from a Consultancy perspective; commercial acumen IT Security/Cyber Security project experience A security operations expert with broad experience and CISSP/CISM certification or equivalent, you know how to plan and deliver complex cybersecurity projects. Benefits Excellent compensation and benefits package, including Company Pension, Private Health Care and Cash-Back Plan, Car Leasing Scheme and more Ongoing training and development opportunities, resulting in industry recognised accreditations and qualifications Flexible working hours, occasional home office (where possible) We encourage autonomy and entrepreneurship enabling our consultants and employees to influence the strategy and direction of the business Adarma We began life in 2009, with a fierce determination to make cyber resilience a reality for every organisation, every day. This has guided us as we've adapted and grown to become one of the UK's leading threat specialists. Our journey is remarkable. But what's ahead is even more inspiring. Together, we're growing and transforming like never before. We're partnering with even more customers and creating more innovative and resilient solutions. And we're taking our thinking and our whole sector further, every single day.
We are actively recruiting for a Security Consultant to work in our SOC Consulting services, within our Detection & Response (D&R) Practice. Working to support our customers assess their SOC capabilities, align on the right direction for meeting their business needs and completing the transformation journey. Remote UK locations are available with occasional travel to either Adarma offices and customer locations. What you'll do For our customers, you'll be both a true partner and a trusted source of expert insight and advice. Leading on either one critical security area or broader strategic challenges, you'll understand and analyse their needs, before recommending the right way forward. you'll also scope complex projects and support the development and implementation of new solutions. And you'll drive our own progress too mentoring a team and helping our pre-sales team develop new opportunities for us to make an impact. How you'll grow We have a strong culture of learning and development, so you'll have plenty of opportunity to grow in your specialist area and beyond. In time, you could progress to Senior Consultant, or focus more on your technical skills in a senior engineer or architect role. What you'll bring You have a solid knowledge of security operations processes and tools plus best practice in fields such as SIEM solution design, use case development, SOC maturity, XDR/EDR, Log Management and detection testing. Crucially, you re an outstanding communicator and relationship builder too, able to bring the best out of others. Previous experience in the design and reviewing of security detection solutions Experienced in the implementation and management of SIEM, EDR and NDR technologies (eg Splunk, Microsoft Sentinel/Defender, CrowdStrike Falcon/Humio, Google Chronicle, SentinelOne, ArcSight, QRadar, Logrythm, Vectra, ExtraHop, etc) Previous experience in designing and implementing detection and response use cases with data source analysis and onboarding Experience of complex and/or large-scale security detection solutions Previous project experience from a Consultancy perspective; commercial acumen IT Security/Cyber Security project experience A security operations expert with broad experience and CISSP/CISM certification or equivalent, you know how to plan and deliver complex cybersecurity projects. Benefits Excellent compensation and benefits package, including Company Pension, Private Health Care and Cash-Back Plan, Car Leasing Scheme and more Ongoing training and development opportunities, resulting in industry recognised accreditations and qualifications Flexible working hours, occasional home office (where possible) We encourage autonomy and entrepreneurship enabling our consultants and employees to influence the strategy and direction of the business Adarma We began life in 2009, with a fierce determination to make cyber resilience a reality for every organisation, every day. This has guided us as we've adapted and grown to become one of the UK's leading threat specialists. Our journey is remarkable. But what's ahead is even more inspiring. Together, we're growing and transforming like never before. We're partnering with even more customers and creating more innovative and resilient solutions. And we're taking our thinking and our whole sector further, every single day.