Security Operations Engineer

Summary

Join 10x Banking's Security Operations team as a fully remote Security Incident Responder, based in Hungary. You will support the Security Operations Centre by investigating and resolving security events, acting as a Subject Matter Expert. Collaborate with the broader security team across various security domains. Enhance security controls and monitoring capabilities, build automated detection and response capabilities, and lead technical responses to security incidents. Identify and remediate vulnerabilities and threats, maintain incident response documentation, and participate in on-call rotations. This role requires a sound understanding of enterprise security principles, incident response experience, and experience with public cloud environments and SIEM tools.

Requirements

• Sound understanding of Enterprise Security Principles and in particular Security Operations and Incident Response
• Previous experience conducting Incident Response in both Corporate and Data Centre Environments
• Working experience of securing public cloud environments such as AWS, Azure or GCP
• Prior working experience of SIEM tools (preferably Google SecOps, formerly Google Chronicle) with focus on writing custom searches, alerts and dashboards
• A proven ability to adapt to new and complex environments and a hunger to learn and develop
• Fantastic written and verbal communication skills to both technical and non-technical audiences

Responsibilities

• Support our Security Operations Centre with the investigation and resolution of Security events and detections, acting as a trusted and dependable Subject Matter Expert
• As part of the broader security team, you will be exposed to multiple different facets of security working with specialists in security engineering, application security, threat modelling, etc
• Identify ways to enhance our Security Controls and Monitoring Capabilities across our estate
• Build and operate automated detection and response capabilities
• Act as a Lead Technical Responder for Security Incidents, liaising with other parties to triage, investigate, respond and protect our business
• Identify and drive remediation of vulnerabilities and threats
• Support the day-to-day maintenance of Incident Response Documentation
• Participate in our generously-remunerated Security Incident Responder on-call rotation

Preferred Qualifications

• Experience across other security domains such as Security Architecture or Security Engineering
• Experience with one or more programming languages (Python, Bash etc)
• Prior experience in conducting Threat Hunting and/or managing Threat Intelligence
• Experience writing and maintaining SOAR playbooks to aid in automation
• Experience in using and overseeing Vulnerability Management Platforms
• Experience using CSPM tools, specifically InsightCloudSec
• Experience with microservice-based cloud-native architectures, relational databases, big data, streaming technologies and continuous integration pipelines
• Experience of working within an Agile Framework
• Prior experience of maturing Security Operations functions

Benefits

Remote work, flexible hours