Home
Jobs
TieTalent
Security Automation and Detection Engineer

Security Automation and Detection Engineer

Hybrid

Cambridge, United Kingdom

Freelance

27-02-2025

Share this job:

Score my CV Apply

Job Specifications

About

A multinational semiconductor and software design company is seeking a Security Automation & Detection Engineer for a 6-month contract to start ASAP, based in Cambridge (Hybrid), Inside IR35.

Role Overview: Utilising knowledge of security operations, incident response, and detection engineering, you will be responsible for the delivery of SIEM detections and security automations. The successful candidate will be proficient in automation and orchestration tools (e.g., SOAR platforms, scripting languages like Python, PowerShell) and have experience with integrating security tools (e.g., SIEM, EDR, firewalls) APIs, and Case Management tools for data enrichment.

Responsibilities: Build security automations, logging, and SIEM detections to improve the Cyber Defence Operation's efficiency, scalability, and incident response capabilities. Design, implement, and maintain automated workflows and playbooks to streamline CDO operations, including incident response, threat hunting, cyber threat intelligence and vulnerability management. Collaborate with Cyber Defence Operation analysts to identify repetitive tasks and automate them to improve operational efficiency. Collaborate with Threat Intelligence, Incident Response, and Attack Surface Management to build and tune robust SIEM detections for both proactive and reactive response actions. Continuously evaluate automation solutions for performance, reliability, and scalability, making improvements, as necessary. Collaborate with third-party vendors and service providers to leverage automation opportunities and ensure successful integrations. Lead technical migration of log sources into Microsoft Sentinel SIEM.

Required Skills and Experience: Demonstrated ability in cybersecurity, with at least 3 years in a technical role in security operations and/or security software development. Solid understanding of security operations, automation standard processes, detection engineering and SIEM management. Experience with cloud security tools and platforms (e.g. Azure, AWS Google Cloud) and their integration into SOC operations. Vendor-specific certifications for Security orchestration, automation, and response (SOAR) platforms (e.g., Sentinel SOAR, Splunk SOAR, Palo Alto Cortex XSOAR). Experience contributing to large-scale, sprint-based, security automation and detection engineering projects.

Desirable Skills and Experience: Ability to develop and implement long-term automation strategies aligned with security operation objectives. Ability to translate technical concepts into clear, actionable insights for technical and non-technical partners. Meticulous focus on ensuring accuracy, reliability, and security in automation workflows Consistent record of implementing automation and integration solutions in a SOC or similar environment

Hays Talent Solutions is a trading division of Hays Specialist Recruitment Limited and acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)

Nice-to-have skills

Python
Powershell
Firewalls
Azure
AWS
Splunk
Cambridge, England

Work experience

Cyber Security Specialist
Security Analyst
Security Architect

Languages

English

About the Company

TieTalent is the career growth platform dedicated to tech professionals. By being part of our community they access exclusive content and perks from our partners for services that help them expend their knowledge. When open for a new opportunity, companies apply for them for jobs they want. On their side, companies benefit from an intelligent system allowing them to hire rare talents in tech quickly and hassle-free, that they need to be successful. TieTalent launched in October 2018 and is already trusted by thousands of ... Know more

Related Jobs

Company Name: HCLTech
Job Title: Database Security Specialist
Job Description: We are a $13+ billion global technology company, home to more than 224,000 people across 60 countries, delivering industry-leading capabilities centered around digital, engineering, cloud, and AI, powered by a broad portfolio of technology services and products. HCLTech is a globally recognized leader in the Tech and IT industry, but we’ve never forgotten the startup mindset that got us here. We’ve always approached our work with an idea-first attitude because every one of our accomplishments —no matter how big or small —can be traced back to an idea’s single spark. It’s that spark —that inner drive —that sets our people apart from our competitors. It enables us not just to pull off game-changing feat after game-changing feat but to better our world in the process. We want you to find your spark. Because that’s what drives you to be better, be more and ultimately, be more fulfilled. Location: UK (London Information Security Senior Specialist (Database) Information Security is responsible for preventing IT-based crime, hacking, intentional or inadvertent modification, disclosure, or destruction to the organization's information systems and IT assets and intellectual property. The focus of the role is to ensure highly professional and productive procedures, policies and processes/controls are in place, and aligned and agreed and implemented with relevant stakeholders. Overview/Key Responsibilities: The Information Security Senior Specialist (Database) will work with Database Engineering, Database Operations, CISO and audit to ensure that security controls are defined, implemented and operating effectively. Roles within Information Security may cover one or more areas of specialty: Identity & Access Management (which may include, for example, authentication; access management & control; recertification etc.) Information Security (“IS”) Operations (which may for example include, cyber threat operations; protection against data leakage etc.) IS Technology (which may include IS architecture, IS engineering, cryptographic services etc.). Work includes: Identifying and evaluating potential areas of Information Security threat by assessing the probability and impact, and implementing associated mitigations Monitoring and contributing to the implementation of the Information Security strategy Evaluating the adequacy and effectiveness of internal controls relating to Information Security risks Ensuring appropriate procedures, policies and processes are in place, and aligned and agreed with relevant stakeholders Configuration/security baselines Developing appropriate, pragmatic strategies to deliver effective controls and Information Security management objectives and implementation across the bank Managing client relationships and ensuring management focus on the Information Security agenda Work includes: Assessing security/configuration baselines Reviewing/designing security controls to ensure it meets audit and CSO requirements Evidencing (documentation) of control compliance, Building security and resiliency into solutions with appropriate testing and reviewing throughout the delivery lifecycle Ensuring maintainability and reusability of engineering solutions Support PM, Migration Manager and application teams with implementation and Migration activities and tasks to support project delivery Database Expertise: Knowledge of relational databases, security configuration management, security monitoring and tooling. Migration Process Development: Work closely with the project/migration leads to develop robust migration processes (provide security input as required). Ensure seamless integration of migration strategies with minimal disruption to ongoing operations. Collaboration with Application Teams: Support migration and project leads and application teams Plan and coordinate migrations, considering security dependencies and minimizing potential disruptions. You will have: (Skills/Experience) Experience: Minimum of 8+ years of relevant experience in information security roles. Proven experience as a Technical Lead with a focus on Oracle and database management Knowledge of IT Infrastructure Environments/ITIL would be advantageous. Working knowledge of requirements management through to delivery, both Agile and Waterfall. Experience within a tier1 banking experience ideally Deutsche Bank infrastructure environments Excellent self-starter, able to work in virtual global teams in a matrix organization. Extensive analytical skills, flexibility regarding problem solving. Open minded, able to share information, transfer knowledge and expertise to team members. Able to work in fast paced environment. Self confidence You will be: (Skills/Competencies) Qualifications: CISA/CISM or equivalent security certification Demonstrated success in audit remediation initiatives. Excellent communication and collaboration skills. Education: Bachelor’s degree in Computer Science, Information Technology, or related field. Top 5 attributes/competencies/skillset/qualities of the ideal candidate: Self-starter evidenced through assertive and pro-active behaviors. Ability to lead in fast paced, constantly changing environment. Strong stakeholder management skills Strong conflict management skills Strong communication skills

London, United Kingdom

On site

Freelance

03-03-2025

Company Name: Flutter International
Job Title: Senior Security Operations Analyst- 12 Month FTC
Job Description: Job title: Senior Security Operations Analyst- 12 Month FTC Location: Leeds or London Overview Of The Role The role: We are seeking a skilled and experienced Senior Information Security Operations Specialist to join our Cyber Security Operations (SOC) team. The successful candidate will be responsible for ensuring the security of our organization’s computer systems, networks, and data. The Senior Information Security Operations Specialist will also collaborate with other teams to identify and mitigate potential security risks and develop strategies to improve our overall security posture. This is a great opportunity for a suitably experienced individual to directly influence and improve the security posture of the company. This role follows a hybrid approach to working, allowing you to combine working from home with working in our modern offices. These discussions are between you and your manager to find the best pattern for you both, while recognising that quality time together is essential for keeping us mission-aligned. What You’ll Do As a Senior Information Security Operations Specialist, you will become a pivotal member of the team supporting the organisation’s cyber defence strategy. The Cyber Security team provides an exciting and challenging environment, using best of breed tools and methodologies to protect and strengthen the company’s IT platforms. As an Information Senior Information Security Operations Specialist, you will: Act as the 1st line of defense for security related topics. Actively monitor, triage, investigate and correlate complex security IoC Investigate and respond to security incidents, including data breaches and cyber-attacks. Manage incident management, containment and communication to senior stakeholders following the escalation process. Provide subject matter expertise on common attack methods and defensive security controls. Provide advanced log analysis to support open incident investigations. Identify and recommend useful automation & tuning opportunities on current use cases, along with recommending implementation of new relevant detective use cases to better cover the threat landscape. Research and propose implementation of new preventive security controls to improve the overall security posture of the organization. Develop and maintain operational processes and procedures. Participate in assigned internal security assessments or audits. Ensure security operations is at maximum efficiency and empower and impart analysts with knowledge and security tools. Provide mentorship & guidance to team members on security strategy, tactics, techniques, and procedures. Collaborate with other teams to identify and address potential security risks across the organization. Stay up to date with the latest security threats, trends, and technologies to ensure that the organization remains protected What You’ll Bring An experienced IT professional capable of providing expertise on many of the aspects of cyber security. Your Experience & Education Bachelor’s or master’s degree in computer science, Information Technology, Network Security, Information Security, or a related field. 5+ years of experience in cyber security, with demonstrated experience in security analysis, incident response, threat intelligence and threat hunting. Experience with security tools such as IDS/IPS, SIEM, endpoint protection, proxy, cloud security and vulnerability scanners. Your Skills Strong knowledge of security best practices, tools, and techniques. Demonstrated experience with security incident response, forensics, and threat hunting Strong understanding of security technologies such as firewalls, intrusion detection and prevention systems, access control, encryption, and anti-virus/malware solutions Strong ethical values, integrity, and a commitment to confidentiality Strong analytical and excellent problem-solving skills Excellent written and verbal technical & business communication skills (English) Ability to work effectively both independently and as part of a team Strong sense of urgency and ability to work under pressure. Excellent task management and planning skills for self/team. Great leadership, coaching and team-player skills Requirements A keen interest in security and a strong desire to learn new technologies and a passion for information security An excellent understanding of IT Security concepts Strong experience working with Cloud technologies including AWS & Azure Expert understanding of: Operating systems (Windows, MAC OS, Linux) at a filesystem level Fundamental internet protocols, services, and technologies (e.g.: HTTP/HTTPS, DNS, SMTP, SSH, LDAP, TCP/IP, UDP, ICMP, REST, JSON, etc.) Common security controls (e.g.: proxies, firewalls, WAF, IDS/IPS, etc.) Incident response and incident handling processes Endpoint and network-based investigations Log reviews for identifying evidence of past intrusions Operating system and application exploits Malware and exploit kit functionalities Lateral movement and persistence establishment mechanisms Detection of anomalous system activities Indicators use for the identification of scope and breadth of attacks Threat hunting methodologies Industry certifications from vendors: SANS/GIAC, EC-Council, Cisco, ISC2, Juniper, CompTIA, ITIL, Microsoft, Unix, Oracle, etc. (e.g.: GCIA, GCIH, GCFA/GCFE, GREM, OSCP/OSCE, GSEC, CISSP - or similar) Experience as SOC Team lead – considered a plus Work Schedule Regular business hours Mon-Fri – (flexible) + On-Call 24/7 rotation (1 week/analyst) It’s ok if you don’t think you tick every box on this list. We love people who want to challenge themselves and are passionate about what they do. If you believe you can supply in some areas and are eager to learn, we encourage you to apply. Why Choose Us Aside from a generous base salary, we have a fantastic benefits & rewards program that is designed to encourage personal and career development. Discretionary annual performance bonus 30 days paid leave Health and dental insurance for you, and 50% coverage for your partner and your children (if you all live at the same address) Personal life insurance and income protection The option to join our company pension scheme External learning support of up to £2,000 or equivalent in local currency, dedicated 4 learning “Power Hours” every month during office time, full access to the Udemy and Mindtools platforms, in-house leadership program and many other training opportunities for developing your skills and progressing your career Looking to extend your family? You will receive a cash gift of £1,000 for your new addition whilst working for us 26 weeks primary carer leave at 100% pay & 4 weeks secondary carer leave pay at 100% pay Access to an on-site gym Social events; including our sensational summer and Christmas parties Online Discount Scheme, including discounted shopping and cinema vouchers Equal Opportunities At Flutter International we are committed to creat...

Leeds, United Kingdom

On site

Freelance

01-03-2025

Company Name: TRIA
Job Title: Enterprise Security Architect
Job Description: Job Title: Enterprise Security Architect (IT) Location: Hybrid, Hampshire – occasional travel for key meetings. Rate - Up to £740 P/d Inside IR35 Role Overview: We are seeking an experienced Enterprise Security Architect to shape and manage the security architecture of our clients IT environment. You will ensure the systems are securely designed, compliant with regulations, and meet business security needs. The role involves collaboration with cross-functional teams and overseeing security initiatives within a large Cyber Security Programme. Key Responsibilities: Enhance IT security architecture and ensure compliance with industry standards (e.g., ISO 27001, NIST). Participate in threat modelling and design reviews. Provide technical sign-off for IT security designs. Perform gap analysis and identify areas for security improvement. Work closely with security and IT teams to manage risks. Required Experience & Skills: 5+ years of experience in enterprise architecture and IT security. Expertise with security frameworks, tools (e.g., AWS, CyberArk), and cloud-based solutions. Strong communication and collaboration skills. Experience with security standards and regulations. If you're an experienced security architect ready to drive IT security strategy, apply today!

Hampshire, United Kingdom

On site

Freelance

03-03-2025

Company Name: Experis IT
Job Title: Network Architect - SSO
Job Description: Job Title:Network Architect Location:100% Remote Rate:£550 per day - Umbrella Only Clearance: Candidates are required to hold Active SC Clearance. Role Summary We are seeking a highly skilled Network Architect with extensive experience in Single Sign-On (SSO) to join our dynamic team. The Ideal Candidate The successful candidate will be responsible for designing and implementing robust network architectures that integrate seamlessly with SSO solutions, ensuring users can effortlessly access a variety of applications. This role requires a deep understanding of network infrastructure, security protocols, and authentication mechanisms. The ideal candidate will have a proven track record of delivering scalable and secure network designs, excellent problem-solving skills, and the ability to collaborate effectively with cross-functional teams. If you are passionate about creating innovative network solutions and enhancing security through SSO, we would love to hear from you. Essential Criteria Immediately Available Active SC Clearance Experience working as a Network Architect ideally within an SSO environment Require experience with Active Directory

England, United Kingdom

On site

Freelance

03-03-2025