Lead Information Security Engineer, SIEM,CYBER,Vulnerability

Location:
Bristol
Job Type:
Contract
Industry:
Cyber Security
Job reference:
41411_1737722044
Posted:
7 days ago

Lead Information Security Engineer - Security Operations

We are seeking a highly skilled and motivated Lead Information Security Engineer to join our team. In this role, you will play a pivotal part in safeguarding the organization's technology infrastructure and protecting it from evolving cyber threats. As the Information Security Principal (Security Operations), you will lead the technical security operations, incident response, vulnerability management, and protective monitoring strategies. You will also have the opportunity to advise senior leadership on critical security issues and help shape the future of our security posture.

Key Responsibilities:

  • Lead Technical Security Operations: Oversee and define governance structures to ensure security countermeasures are in place to meet the organization's risk appetite. Maintain technical integrity across the estate.

  • Incident Response & Investigation: Lead the response to security incidents, including triaging alerts, managing investigations, and driving remediation efforts. Provide recommendations for process improvements and help maintain organizational readiness.

  • Protective Monitoring Strategy: Lead the implementation and roadmap execution of a protective monitoring strategy. Ensure all activities and outputs comply with policies, standards, and security requirements.

  • Security Event Analysis: Oversee the triage and investigation of high-priority or complex security alerts, ensuring proper escalation procedures are followed and key decisions are made on incident reporting.

  • Automated Monitoring Design: Spearhead the design and implementation of automated monitoring processes, utilizing SIEM (Security Information and Event Management) and network analysis tools. Advise leadership on monitoring progress and results.

  • Vulnerability Management: Lead the development of vulnerability assessments and scanning strategies across the organization. Prioritize vulnerabilities using a risk-based approach and provide guidance to teams on mitigation strategies.

  • Risk Mitigation & Advisory: Advise senior leadership and key stakeholders on mitigating security risks, offering tailored, expert-level guidance for control improvements and security posture enhancement.

  • Cross-Functional Collaboration: Lead large-scale penetration tests, red team exercises, and vulnerability assessments to assess system robustness. Engage with senior stakeholders to provide Cyber Security assurance in line with policy and regulations.

  • Digital Forensics Strategy: Define and implement the organization's approach to digital forensics, ensuring legal guidelines are met while minimizing business disruption and preserving evidence integrity.

  • Governance and Compliance: Work closely with both internal and external teams to manage compliance with data protection and cybersecurity regulations.

Essential Skills and Experience:

  • Extensive Experience in IT Security Operations: Proven track record in securing cloud-based platforms (Azure, Microsoft 365, Amazon AWS) and large-scale technology estates.

  • Expert Knowledge in Vulnerability Management: Experience managing vulnerabilities across complex environments with an ability to lead risk-based prioritization.

  • Digital Forensics Expertise: Hands-on experience in digital forensics with a focus on legal compliance and evidence preservation.

  • SIEM and Network Analysis Tools Expertise: Proven background in the design and implementation of SIEM systems and network analysis techniques for detecting malicious activity.

  • Comprehensive Security Management Awareness: Strong knowledge of information security principles, methods, and tools applied in complex business environments.

Desirable Skills:

  • IT Security Architecture: Experience with security architecture design and implementation is an advantage.

  • Data Protection Regulations Knowledge: Familiarity with data protection and privacy regulations is desirable.

People Source Consulting Ltd is acting as an Employment Business in relation to this vacancy. People Source specialise in technology recruitment across niche markets including Information Technology, Digital TV, Digital Marketing, Project and Programme Management, SAP, Digital and Consumer Electronics, Air Traffic Management, Management Consultancy, Business Intelligence, Manufacturing, Telecoms, Public Sector, Healthcare, Finance and Oil & Gas.

Back to Search Results