Home
Jobs
Meta
Security Engineer, Incident Response

Security Engineer, Incident Response

On site

London, United Kingdom

Full Time

14-04-2025

Share this job:

Score my CV Apply

Job Specifications

Meta Security is looking for an Incident Response Engineer with experience coordinating, investigating and responding to internal and external threats. You will help the team establish, lead and execute multi-year roadmaps to mature investigative and response services, drawing upon automation and cross functional partnerships to create scalable and resilient operational capabilities.

Security Engineer, Incident Response Responsibilities:

Conduct security investigations and lead security incident response in a cross-functional environment and drive incident resolution.
Develop Incident Response initiatives that improve our capabilities to effectively respond and remediate security incidents.
Refine operational metrics, key performance indicators, and service level objectives to measure Security Operations and Incident Response services.
Influence and align the team’s vision and strategy. Collaboratively prioritize and deliver specific multi-year roadmaps and projects.
Build, cultivate, and maintain positive relationships with internal customers to identify and facilitate solutions to increase the impact of the team's work.
Partner with cross-functional teams to solve challenges related to a broad spectrum of detection and response initiatives.
Collaborate with software and production engineering teams to develop scalable and flexible Incident Response and Investigative solutions.
Focus on ruthlessly prioritizing, automating and scaling every aspect of our detection and response capabilities.
Coach, mentor, support and care for the team in a way that enables long-term career development, happiness and success at scale.

Minimum Qualifications:

10+ years of work experience in Security Incident Response and Detection & Response Engineering in a large, regulated organization.
Be a technical and process subject matter expert regarding Security Operations and Incident Response services.
Experience developing and delivering information on incident and program status for senior leadership.
Experience leading and managing complex cross-functional programs.
Experience responding to both external and insider threats.
Experience analyzing network and host-based security events.
Knowledge of networking technologies, specifically TCP/IP and the related protocols.
Knowledge of operating systems, file systems, and memory structures on Windows, MacOS and Linux.
Coding/scripting experience in one or more general purpose languages.
Experience with attacker tactics, techniques, and procedures.

Preferred Qualifications:

Background in malware analysis, digital forensics, intrusion detection, and/or threat intelligence.
Experience in threat hunting including leveraging intelligence data to proactively identify and iteratively investigate suspicious behavior across networks and systems.
Broad knowledge across the Security domain, as well as deep focus in one (or more) areas such as Logs and events processing, Incident Management, Digital Forensics, Detection and/or response tool development.
Experience recruiting, building, and leading technical teams, including performance management.

About Meta:

Meta builds technologies that help people connect, find communities, and grow businesses. When Facebook launched in 2004, it changed the way people connect. Apps like Messenger, Instagram and WhatsApp further empowered billions around the world. Now, Meta is moving beyond 2D screens toward immersive experiences like augmented and virtual reality to help build the next evolution in social technology. People who choose to build their careers by building with us at Meta help shape a future that will take us beyond what digital connection makes possible today—beyond the constraints of screens, the limits of distance, and even the rules of physics.

Individual compensation is determined by skills, qualifications, experience, and location. Compensation details listed in this posting reflect the base hourly rate, monthly rate, or annual salary only, and do not include bonus, equity or sales incentives, if applicable. In addition to base compensation, Meta offers benefits. Learn more about benefits at Meta.

About the Company

Meta's mission is to build the future of human connection and the technology that makes it possible. Our technologies help people connect, find communities, and grow businesses. When Facebook launched in 2004, it changed the way people connect. Apps like Messenger, Instagram and WhatsApp further empowered billions around the world. Now, Meta is moving beyond 2D screens toward immersive experiences like augmented and virtual reality to help build the next evolution in social technology. To help create a safe and respectful... Know more

Related Jobs

Company Name: Verizon
Job Title: Senior Security Architect
Job Description: When you join Verizon You want more out of a career. A place to share your ideas freely — even if they’re daring or different. Where the true you can learn, grow, and thrive. At Verizon, we power and empower how people live, work and play by connecting them to what brings them joy. We do what we love — driving innovation, creativity, and impact in the world. Our V Team is a community of people who anticipate, lead, and believe that listening is where learning begins. In crisis and in celebration, we come together — lifting our communities and building trust in how we show up, everywhere & always. Want in? Join the #VTeamLife. What You’ll Be Doing... In an effort to customize and drive greater value out of Verizon’s Managed Security Services and Products, Verizon clients have the ability to add additional Support via a Client Security Architect/Engineer. The Client Security Architect/Engineer is an integral part of the managed security solution. You will partner with our customer’s technology leaders and architects, to create customised security designs based on best practices. You will ensure that new designs support appropriate capacity levels, and then provide ongoing capacity management through-out the design life cycle. All security designs are created to support service level agreements and are therefore optimized to support business continuity. Where possible, we will also look for opportunities to consolidate infrastructure to reduce cost and/or for dedicated lanes built for high priority applications. You will also provide 3rd/4th level operations support. Responsibilities Assist clients in overcoming complex network and security challenges as you help move the network and security engagements forward with new technology, features and functionality, (including completion of product and technology evaluations). Minimize the risk of negative effects resulting from poorly planned network changes. Determine the appropriate hardware and software features and functionality required for a change or enhancement. Verify that new hardware and software levels are interoperable with the existing network. Give technical advice and guidance on network cutovers and implementation plans, while understanding how these changes/modifications can affect the customer’s business. Act as the technical security and network liaison between the customer and Verizon for problem resolution assistance (with regards to critical network engineering, security engineering, and change management issues). Define action plans that are easy to implement, effective at reducing risk, and that utilise existing people, processes, and technologies. What we’re looking for... You’ll Need To Have Bachelors degree or relate work experience. Experience in network and security solution architecture and design. Experience of working with external customer contacts. Experience of working with Palo Alto, Checkpoint, Cisco, or Fortinet security products. Experience of working with multiple vendor devices & technologies including EDR, SIEM, UTM, IDS/IPS, Firewalls, Proxies and NAC. A background in Network Engineering. Even better if you have one or more of the following: Experience with cloud platforms such as AWS and Microsoft Azure. Strong communication, relationship building and presentation skills. A strong knowledge of commonly used network products & technologies, with industry recognized certifications (such as CCNA, CCNP, CCIE). Knowledge and experience of a SIEM solution (Splunk, RSA, Securonix, etc..) as well as the creation, maintenance and development of Detection Content. Experience in Incident Response and working within a SOC environment. Knowledge of IDS/IPS tuning. Experience of working with third party cloud solutions such as Zscaler, iBoss or Cylance. Experience with Vulnerability Management solutions (such as Qualys, Nessus). Experience with Policy Assessment tools (Tufin, Algosec, Firemon, Skybox) If Verizon and this role sound like a fit for you, we encourage you to apply even if you don’t meet every “even better” qualification listed above. Where you’ll be working In this hybrid role, you'll have a defined work location that includes work from home and assigned office days set by your manager. Scheduled Weekly Hours 40 Equal Employment Opportunity Verizon is an equal opportunity employer. We evaluate qualified applicants without regard to race, gender, disability or any other legally protected characteristics.

London, United Kingdom

On site

Full Time

13-05-2025

Company Name: LSEG (London Stock Exchange Group)
Job Title: Senior Analyst, Technology and Cyber Security GRC
Job Description: Key Responsibilities Support the first line Technology & Cyber Issue, Audit and Regulatory compliance function and ensure all compliance matters are quality driven and centrally supported with standard methodology. Support the governance of technology & cyber related Self-Identified Issues as well as Internal Audit and External audit actions undertaken Perform quality reviews of all Technology and Cyber Security related Audit Observations and Self-Identified Issues to ensure accuracy and appropriate severity and ownership assignment. Oversee the implementation of action plans to remediate both Self-Identified Issues and Audit Issues. Perform issue closure validation for both Self-Identified Issues and Audit Issues. Support the maintenance of a centralised repository of Engineering audit & regulatory evidence and responses for re-use and with reporting. Maintain a centralised repository of Customer RFI responses for re-use and with reporting. Support the work of wider GRC teams where required and in areas of interest and expertise. Work with partners to ensure conformance with Regulatory, Company and Industry standards. Supporting the production of required Metrics at committees and forums, as well as representing the team where required. Critical Work Support the ongoing and periodic regulatory and compliance responses and engagements Audit management and coordination Issue remediation oversight and closure validation Responding to customer RFIs using standardised formats and frameworks Quality assurance on library of responses required for customer RFIs etc. Impact The development of the Audit and Regulatory Governance within Technology and Cyber Security divisions will have a significant impact on the resources of other teams in cyber. The GRC team especially need to assure the remediation activity conducted in response to findings. Technical / job functional knowledge Awareness and working knowledge of control frameworks based on industry standard methodologies such as NIST, COBIT, and ISO27001. Awareness of key regulatory requirements for technology and cyber security in the main LSEG operating centres – UK, Europe, US & Asia Cyber security qualification e.g. CISMP / Apprenticeship (desirable) Demonstrable working knowledge and understanding of key technology and cyber security controls such as Incident Management, Backup & Recovery, Capacity Management, Vulnerability Management, Identity & Access Management, Authentication and Authorisation systems, Data Protection, Application Security, Secure Application Development practices, Third-Party and Cloud security. IT and cybersecurity policies and standards Operational risk frameworks Regulatory compliance Operational Resilience Good understanding of data protection controls Financial Services sector experience Technology & Cyber Security Leadership And Management Experience Not essential but experience will be recognised, greater focus on work experiences and ability to engage and drive initiatives. Personal Skills And Capabilities Critical thinking Objective analysis of poorly defined problems Ability to provide robust challenge Proficient understanding of financial institutions and underlying business processes Partnership and influence Resource management Negotiation and Partner management Resolving Conflicts Working with senior stakeholders LSEG is a leading global financial markets infrastructure and data provider. Our purpose is driving financial stability, empowering economies and enabling customers to create sustainable growth. Our purpose is the foundation on which our culture is built. Our values of Integrity, Partnership, Excellence and Change underpin our purpose and set the standard for everything we do, every day. They go to the heart of who we are and guide our decision making and everyday actions. Working with us means that you will be part of a dynamic organisation of 25,000 people across 65 countries. However, we will value your individuality and enable you to bring your true self to work so you can help enrich our diverse workforce. You will be part of a collaborative and creative culture where we encourage new ideas and are committed to sustainability across our global business. You will experience the critical role we have in helping to re-engineer the financial ecosystem to support and drive sustainable economic growth. Together, we are aiming to achieve this growth by accelerating the just transition to net zero, enabling growth of the green economy and creating inclusive economic opportunity. LSEG offers a range of tailored benefits and support, including healthcare, retirement planning, paid volunteering days and wellbeing initiatives. We are proud to be an equal opportunities employer. This means that we do not discriminate on the basis of anyone’s race, religion, colour, national origin, gender, sexual orientation, gender identity, gender expression, age, marital status, veteran status, pregnancy or disability, or any other basis protected under applicable law. Conforming with applicable law, we can reasonably accommodate applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs. Please take a moment to read this privacy notice carefully, as it describes what personal information London Stock Exchange Group (LSEG) (we) may hold about you, what it’s used for, and how it’s obtained, your rights and how to contact us as a data subject. If you are submitting as a Recruitment Agency Partner, it is essential and your responsibility to ensure that candidates applying to LSEG are aware of this privacy notice.

London, United Kingdom

Hybrid

Full Time

13-05-2025

Company Name: Cubic Corporation
Job Title: Senior Security Analyst
Job Description: Business Unit: Cubic Transportation Systems Company Details: Cubic offers an opportunity to provide innovative technology for government and commercial customers around the globe, helping to solve their future problems today. We’re the leading integrator of payment and information technology and services for intelligent travel solutions worldwide, and the leading provider of realistic combat training systems, secure communications and networking and highly specialized support services for military and security forces of the U.S. and allied nations. If you have an entrepreneurial spirit and thrive in an innovative environment, we want to talk to you about your next role at Cubic! We are seeking employees inspired by technology, and motivated by the rewards of hard work, commitment, teamwork, quality, integrity, and respect. We invite you to explore opportunities with Cubic. Responsible for leading a small team of operational security analysts applying IT security tools and processes to manage and report operational information security risk as a service provider to Cubic’s customers. Recognised internally as a subject matter expert. Works autonomously, able to assess and drive work priorities, with limited support or guidance needed from senior security function leadership. Job Details: Essential Job Duties and Responsibilities: Lead and supervise the team on a day to day basis, ensuring that the team is adequately resourced and has the required skills and ability to deliver the agreed level of service to our customers. Contribute to the technical strategy and procedures for the team and ensure that the team’s objectives are aligned with the business objectives as set by senior management. Work collaboratively with internal stakeholders to develop and facilitate team performance improvements. Provide expert technical on-the-job training, alongside the Learning & Development team, coaching and mentoring to the team Leads security incident and event management and other operational cyber security monitoring generated by security control tools in accordance with established procedures and security standards. Examples include but are not limited to responding to and reporting from automated alerting systems, audit logs, IDS/IDP logs, anti-virus and firewall systems. Leads incident response, undertakes security investigations and compiles incident and problem management/ root cause analysis reports. Implements corrective actions where required. Leads vulnerability management process for the region. Leads external penetration test activities procured from vendors and ensures remediations are documented and implemented. Installs, manages and improves technical security control tools and processes. Ensures change control requests are reviewed against cyber security requirements to reduce the risk of weakening existing security controls. Participates in the evaluation, testing and implementation of such changes. Leads security control reviews for all types of IT infrastructure and business applications and recommends appropriate action across the wider Security function. Supports mobilisation of new customer programmes and new systems and ensures readiness for operations via established service transition processes within region. Supports internal and external customers defining their needs for new access rights and privileges. Ensures key performance/ key risk information is collated and delivered to internal and external customers according to schedule. Contributes to other information security, contingency planning and related activities. Provide training and guidance to the wider team, promoting best practice and process improvement. May be required to work at or travel on to other local global Cubic sites and datacentres. Comply with Cubic’s values and adherence to all company policy and procedures. In particular comply with the code of conduct, quality, security and occupational health, safety and environmental policies and procedures. In addition to the duties and responsibilities listed, the job holder is required to perform other duties assigned by their manager from time-to-time, as may be reasonably required of them. Minimum Job Requirements: Qualifications Essential: University degree in a relevant subject (e.g. information security, encryption, computer science, maths, engineering) or equivalent educations and Team Leader /commercial experience Desirable: A university master-level degree in a relevant subject (e.g. information security, encryption, computer science, maths, engineering) or equivalent educations/experience Certification as an Information Security professional (e.g. ISACA CISA/CISM/CRISC, ISC(2) CISSP, BCS CISMP/IISP) Information privacy/ data protection industry certifications – CIPPE/ + CIPM Payment Card Industry Security Standards Council certification (ISA/ QSA) ITIL v3/ Prince2 foundation level/ TOGAF certifications IT infrastructure/ networking vendors’ certifications Skills/Experience/Knowledge Essential: Proven team leader with identified tangible results in uplifting team capability. Expert knowledge, focussed on execution and delivery of activities, leads the way for improved efficiency in tool use and streamlining processes. Expert knowledge of security SIEM tooling and vulnerability scanners. Experience in implementing and ensuring compliance with cyber security controls to multiple standards including ISO 27001 and ensuring operational controls meet continued compliance requirements to maintain PCI-DSS certifications Stakeholder management experience e.g. leading consultations/ workshops and presentational skills. Requires conveying advanced information and persuasion of several diverse audiences. Desirable: Functional experience leading a commercial security operations centre. Experience of compliance programmes of wider security, audit, risk and compliance standards e.g. PCI-P2PE, PCI-POI-PTS, ISO 22301, ISO27005, ISO31000, NIST security and risk frameworks, legislation such as GDPR (highly desirable). Experience using cyber security governance, risk and compliance and IT service management tools. Experience of quality management systems and external audit standards e.g. ISO 9001, ISAE3402, SOX compliance knowledge/understanding. Experience of transactional revenue, embedded, smartcards and mobile/ open payment systems. Proficiency writing and speaking in other European languages. Personal Qualities Able to work effectively and uphold professional standards and confidentiality with internal and external stakeholders at all levels. Able to travel globally at reasonable notice and be based internationally for assignments for several weeks’ duration. Superior verbal and written English language communications skills. Ability to understand corporate objectives to implement them as business unit policy. Self-motivated, able to work on own initiative. Strong customer service skills. The description provided above...

Billingham, United Kingdom

On site

Full Time

13-05-2025

Company Name: Cirrus Logic
Job Title: Senior Information Security Analyst (ASM/VM)
Job Description: For over four decades, Cirrus Logic has been propelled by the top engineers in mixed-signal processing. Our rockstar team thrives on solving complex challenges with innovative end-user solutions for the world's top consumer brands. Cirrus Logic is also known for its award-winning culture, built on a foundation of inclusion and fairness, meaningful community engagement, and delivering enjoyable employee experiences at every turn. But we couldn’t do it without our extraordinary workforce – and that’s where you come in. Join our team and help us continue to make Cirrus Logic an exceptional place to grow your career! We are seeking a highly motivated, seasoned security professional to join Information Security as a Senior Attack Surface Management / Vulnerability Management Information Security Analyst. You will be responsible for managing the scanning architecture, as well as the program to identify, analyze, prioritize, and mitigate security vulnerabilities in our digital assets to enhance cybersecurity and protect sensitive data. This role supports business strategy in a dynamic environment. Responsibilities: Vulnerability Assessment: Conduct regular vulnerability assessments to identify security weaknesses in our systems, applications, and network infrastructure. Risk Analysis: Analyze and prioritize vulnerabilities based on risk level and potential impact on the organization. Mitigation Strategies: Develop and implement effective mitigation strategies to address identified vulnerabilities and reduce attack surfaces. Incident Response: Collaborate with the incident response team to investigate and respond to security incidents, ensuring swift resolution and minimizing damage. Security Tools: Manage and maintain security tools and technologies used for vulnerability management, including scanning tools. Security Policies: Develop and enforce security policies, standards, and best practices to ensure compliance with industry regulations and internal security requirements. Reporting: Prepare detailed reports on vulnerability assessment findings, mitigation efforts, and overall security posture for senior management. Security: Engage in the design and support of all aspects of an information security program, including Governance Risk & Compliance, Security Operations, and Security Engineering with hands on engineering and administration of security tools, such as CrowdStrike, Qualys, and Splunk in collaboration with fellow security and IT professionals. Required Skills and Qualifications: Demonstrable experience across multiple cybersecurity domains including vulnerability management, risk management, network security, Splunk engineering, and incident response. Experience analyzing impact of vulnerabilities and designing solutions across Windows, Mac, Linux, Cloud, Network, Labs, and OT. Technical experience designing solutions across Linux, Mac, and Windows platforms. Strong knowledge of common vulnerabilities and attack vectors, as well as security best practices. One or more of the following certifications is preferred: Certified Information Systems Security Professional (CISSP); Systems Security Certified Practitioner (SSCP); GIAC Certified Intrusion Analyst (GCIA). Bachelor’s degree in cybersecurity or have demonstrated ability as a security professional in a globally dispersed enterprise. Experience working in high-tech, engineering, or semiconductor industry is beneficial. Effective working with a globally dispersed team across multiple time zones to deliver solutions on time. Experience with security industry frameworks, such as NIST CSF, ISO 27000 series, FAIR risk analysis, and privacy regulations. Proficiency with security tools such as Qualys, Crowdstrike, and Splunk. Experience with incident response and threat hunting. Excellent analytical and problem-solving skills. Effective communication and interpersonal skills, with the ability to effectively convey technical information to both technical and non-technical stakeholders. Executive presence and comfortable engaging with leaders across the company to facilitate balanced risk discussions and decision making. This position is in Edinburgh, UK. This is a hybrid on-site position and will follow a 2+ day in-office work schedule, with in-office days based on business needs and team preference. You must be based within commutable distance of the work location listed on the job posting, or willing to relocate prior to beginning employment with Cirrus Logic. At Cirrus Logic, we believe that diversity drives innovation, and we are committed to encouraging an open and collaborative culture where different approaches, ideas, and points of view are respected and valued. We aim to promote a workplace where everyone can contribute irrespective of race, colour, national origin, religion or belief, gender or gender identity, sexual orientation, age, marital status, pregnancy status, or disability.

Edinburgh, United Kingdom

Hybrid

Full Time

13-05-2025