Senior Security Operations Engineer
This job is brought to you by Jobs/Redefined, the UK's leading over-50s age inclusive jobs board.
Who we are
BB2 Digital and Technology Services Ltd (t/a Nomo Fintech) is a cloud-based business-to-business Fintech company which owns the digital platform that powers the digital retail banking services of Bank of London and The Middle East plc ("BLME"), branded Nomo (available on iOS and Android), and provides various other services to BLME.
Nomo Fintech is currently in scale-up mode to support international digital banking across the GCC, and it's an incredibly exciting time to join the business with great ambition and an effective combination of talent, culture, and world class technology.
Nomo Fintech leverages the support services of an intragroup entity based in Dubai which houses various functions to support Nomo Fintech's business services.
Description
As a Senior Security Operations Engineer, you will utilize your experience of M365 & Azure Active Directory configuration to secure and protect the business against threats and further develop our security posture and services.
The role will primarily focus on Microsoft cloud-based security suites and operating systems, but the ideal candidate will have experience of using and optimising security products across a wider range of systems including Windows and macOS and be competent in endpoint management tools including Jamf and Intune.
This is a Senior Security Engineering role and the candidate will have previous experience in team leadership and comfortable with ensuring tasks are delivered on time and within scope.
The role will report into the Head of Security and will support the attainment of the security requirements of the organisation.
Responsibilities
• Proven experience in delivering enterprise class M365 & Azure Active Directory implementations
• Leading a small team of security engineers, ensuring tasks are proactively managed and delivered on time.
• Drive Security Operations, Cloud and Endpoint Monitoring with particular focus on M365 and SASE (Secure Access Secure Edge) security solutions
• Sentinel SIEM and EDR experience across M365 services with a particular focus on Azure Active Directory, Conditional Access, Enterprise Applications and M365 configuration. Knowledge of Log management platforms -Log Analytics and M365 logs will be a bonus.
• Experience in building secure endpoints using Autopilot, Intune & JAMF
• Experience in building policy functions using Intune CIS standards and good knowledge of delivering global Windows Defender security across an enterprise.
• Support implementing and running the incident response plan and form part of the SOC Team that takes the appropriate steps to contain and respond to incidents in a timely and efficient manner.
• Development of processes, policies, and guidelines around incident response and security functions
• Experience performing forensics and Root Cause Analysis in postmortems of security events using specialized security software tools is desirable.
• Strong knowledge of M365 & Azure logging and ability to write complex queries in Log Analytics using KQL
• Experienced in OS (Operating System) patching using M365 Security tools
• Implement and enforce global security monitoring policies and standards.
• Support other teams around GDPR initiatives and compliance with other security frameworks.
Skills and Background
• Vast experience in the field; familiarity with applicable security standards, methods, models, and approaches
• Experience in a senior engineering role, leading and managing small teams to drive and deliver successful outcomes.
• Familiarity with compliance frameworks and standards including SOC2 (Service Organization Control 2), NIST, and PCI-DSS
• Strong experience withM365, Azure Active Directory and log analysis
• Good working knowledge of Intune, Autopilot and JAMF
• Knowledge of Microsoft Defender for Cloud Apps & Security centre required
• Strong knowledge of Azure Information Protection and best practice implementation
• Working knowledge of Palo Alto products would be advantageous
• Deep Knowledge of CrowdStrike or Windows Defender
• Good knowledge of network & security engineering
• Good understanding of security architecture principles
• Ongoing awareness of Cybersecurity trends
• Strong attention to detail with an analytical mind and great problem-solving skills