Workplace Security Specialist
Location : UK - Hatfield Job-ID : 36983 Contract type : Standard Business Unit : Others
Workplace Security Specialist
About the Team
Computacenter is building a new Security Operations Center, SOC, to ensure a coordinated response to the increasing cyber threats to the business.
The workplace security specialist will support the Security Operations Lead in delivering core cyber defence services to Computacenter
Key to the role will be specialist security delivery expertise within the Cyber Security Incident Response Team (CSIRT) that will provide cyber defence protection to Computacenter.
The SOC and CSIRT mission is to provide specialist cyber defence protection to Computacenter employees across the globe.
Your responsibilities will include :
Rapid response to cyber security incidents as part of the Computacenter CSIRT;
Delivery of high-quality, prioritised and up-to-date information about the security threats that are relevant to Computacenter;
Delivery and leadership on tooling available to create a simple view of Computacenter’s exposure to cyber threats, performing regular reviews to create visibility of our risk profile and being responsible to inform and influence change;
Collaborate with technology providers to administer secure configuration of technology products which support Computacenter;
Collaborate with cyber defence leadership to inform and influence good security working practices;
The SOC workplace security specialist role covers benchmarking security standards, security information and event management, vulnerability analysis, security incident response & cyber security investigations, threat intelligence and support to Computacenter in increasing cyber resilience.
The Server and Network Security Specialist will :
Operate as Workplace Security Operations Lead for cyber security;
Deliver and manage Computacenter workplace baseline security standards;
Support the SOC Lead to optimise the use of cyber security tools to protect Computacenter from cyber-attacks and security incidents;
Deliver specialist security support to core Computacenter functions including asset, configuration, patch and vulnerability management;
Support cyber exposure reduction in driving remediation of vulnerabilities (patch, configuration and administration) within Computacenter business units;
Deliver specialist investigation and analysis on cyber security incidents to support the Computacenter Cyber Security Incident Response Team (CSIRT);
Support Computacenter Chief Technology Officer and Design Authority for workplace operational security;
Deliver Computacenter server & network expertise into Security operations (SIEM, SOAR, Vulnerability Analysis);
Deliver specialist security support into Computacenter ITIL processes.
Essential skills and experience
Substantial experience (10 years+) in Information and Cyber Security;
Highly Experience (5 to 10 years) of cyber security management systems to support the identification, prevention and protection of cyber risks;
Highly experience in operating specialist security technologies including CIS Benchmarks, Tenable, Qualys and Rapid 7;
Experienced in cloud-based security including Office 365 Advanced Security Management, Office 365 Data Loss Prevention, Office 365 Advanced Threat Protection (ATP), Windows Information Protection, Azure Active Directory Identity Protection, Enterprise Mobility + Security, Windows Defender (and other Anti-Virus products), Windows Defender ATP and Windows 10;
Strong knowledge of network topologies and protocols;
Experience in security risk management, incident response and crisis management;
Experience in investigating security breaches and security incident management;
Experience in SIEM tooling knowledge including technologies such as Sentinel and Splunk;
Experience in end to end information security incident management, mitigating and addressing threat vectors including but not limited to Advanced Persistent Threat (APT), Distributed Denial of Service (DDoS), Phishing and Malware;
Experience with common security enforcing functionality including Intrusion Detection Systems (IDS), Intrusion Prevention Systems (IPS), Web Application Firewalls, Network and host-based Firewalls, Log analysis and Security Information and Event Management (SIEM) systems;
Security experience of working in Cloud environments such as AWS, Azure, & GCP;
Experience with threat-based frameworks such as MITRE ATT&CK;
Good understanding of information assurance standards and frameworks including ISO 27001, Cyber Essentials / Essentials Plus, GDPR;
Recognised information security and / or information technology industry certification (CISSP, CISA, CISM, GIAC or equivalent);
Strong stakeholder, relationship management and communication skills;
Working in a fast paced, shared services matrix environment;
Must have or be able to obtain UK security clearance.
Current information for our applicants
Business as usual? Not quite. Of course, the Corona crisis also presents us with major challenges.
However, we are broadly positioned across various industries, plan for the long term and have always been flexible in our approach to our customers, especially in times of crisis.
Our core business is digitisation. We believe that this topic will continue to grow in importance for many companies in both public and private sectors.
That's why there are still areas of our business with clear hiring requirements and we would like to bring talent like you on board! By the way, we have completely virtualised our application process and our recruiters remain available to you should you have any questions.
We are still looking forward to getting to know you!