Security Operations Engineer

Summary

The job is for a mid-level or senior engineer at Kraken Technologies focusing on security. The role involves maintaining and improving security systems, responding to alerts, assisting other teams, participating in the company's information security program, and supporting the implementation of security processes.

Requirements

• Strong background in information security and technology, with an understanding of security best practices and standards
• Previous experience in working in security teams maintaining and improving security logging, monitoring and alerting including playbooks, and incident response
• Experience in managing security tooling inline with best practice, such as: Endpoint security (e.g. EDR, MDM), Email Security, SIEM and SOAR systems, Vulnerability management tooling (e.g. vulnerability scanning, CSPM, CNAPP)

Responsibilities

• Maintaining Security logging, monitoring and alerting process and tooling
• Responding to security alerts, improving detections and reducing false positives
• Operating Security tooling inline with best practices and internal requirements
• Assisting TechOps and other teams in maintaining their services in line with good security practises
• Supporting security incident response, remediation and root cause analysis
• Helping to manage AWS native security services
• Participate in the company's information security program, contributing to the development and implementation of security policies and procedures
• Collaborate with colleagues across various teams to support the execution of security strategies and initiatives
• Supporting the implementation of security processes and requirements
• Keep up-to-date with emerging security threats, technologies, and industry trends to help enhance the organisation's security approach

Preferred Qualifications

• Security certifications (any of the famous abbreviations)
• Certifications from cloud providers’ certification paths
• Security qualifications (e.g. apprenticeships or degrees)
• Strong skills in creating high-quality, comprehensive security documentation
• Familiarity with AWS services and experience in managing cloud security services
• Experience using logging tools (whether this was a SIEM system or not) to generate alerts and reports
• Understanding of information security standards such as ISO 27001
• Knowledge of the MITRE ATT&CK framework