Staff Security Engineer

You'll join a growing team and be responsible for the security of our computer systems & networks. The focus of this role is our Security Operations Centre and Endpoint Security.The Staff Security Engineer is a strategic role inside InfoSec and mainly concerns our Security Operations Centre (SOC). You will own our SOC discipline, leading the team in all aspects of security monitoring and response; from development, to implementation to operations and improvements. You will provide training for members of InfoSec and TechOps, specialising in the rapid and effective response to security alerts. You will also be our subject matter expert in endpoint security, being the interface between InfoSec and the Digital Workplace team. As a leader within InfoSec you will also provide guidance and advice on various matters with the goal of improving the organisation's overall security posture.What you will be doing:Own the SOC discipline inside InfoSec, including the operations of our SIEM (DataDog), management and support for our SOC rotation, definition of roadmaps, implementation of improvements and measuring our effectiveness via KPIs.Be our subject matter expert in endpoint security.Contribute to the growth of other members of the InfoSec team.Continually evaluate the threat model of our people, process and technology and support the design of our threat detection.Participate in red, blue & purple team engagements to improve incident detection & response.Design honeypots and canaries to attract and detect attackers.Play a pivotal role in shaping our direction and strategy, contributing to the overall vision and effectiveness of our security initiatives.Some of the technologies you will get to work with:DataDog Cloud SIEM.AWS: EKS, ECS, GuardDuty, SecurityHub and more.Security tools: Aqua Security, Rapid7, CrowdStrike, OSQuery and more.Terraform, Terragrunt.Github Actions.Workspace1 for device management.You will need to have:Experience working in a similar role, ideally for a FinTech.Experience building and leading SOCs.Common SIEM experience (managing configuration and detection logic).*NIX: strong understanding.Solid knowledge of computer networks and operating systems.