About the team:
We are seeking an experienced Security Engineer with a passion for security and demonstrated expertise in designing, developing, and implementing security solutions in a hybrid environment. The selected candidate will provide technical leadership and subject matter expertise within the Security Operations Team. The Security Operations (SecOps) Team works in collaboration with other teams within the Information Security organisation, collaborating with internal cross-functional teams as well as external partners. SecOps is responsible for leading and implementing the various initiatives related to improving SumUp’s security such as security monitoring and incident response, vulnerability management, threat intelligence and providing guidance on security best practices.
As an experienced Security Engineer, you will be part of the Security Operations (SecOps) team, working with the various tribes to design and implement security solutions, ensure adequate security measures are applied and capabilities are built to improve efficiencies in security logging, monitoring and alerting. You will have the ability to impact the overall security posture with security relevant projects such as security architecture design, security best practices creation and applications and security solutions designs and deployment.
What you’ll do:
Design and implement a SIEM solution Design and implement security technologies to optimise our detection and response capabilities and meeting security and compliance objectives (EDR, firewalls, GuardDuty, Security Hub, etc) Advise on secure technical solutions and regularly review existing architecture to improve and update the security posture Implement automations to improve our detection and response capabilities Manage our monitoring infrastructure Contribute to implementing secured practices and foster collaboration through awareness training
You’ll be great for this role if you have:
You have over 6+ security operations and engineering experience Experience with AWS cloud security tools, network security, application security, compliance / hardening, security analytics, vulnerability management, security operations, etc. Experience and knowledge of SIEM (Security Information and Event Management) tools for designing and implementing solutions You have a good understanding of security architecture design concepts and practical experience in applying the concepts You have demonstrable experience working with security services offered by cloud providers (AWS, Azure, GCP) and can use them to protect information assets You have strong knowledge of security analysis from the SOC perspectives (detection, triage, investigation, prevention, remediation, mitigation, etc.)
Why you should join SumUp: