Our people work differently depending on their jobs and needs. From hybrid working to flexible hours, we have plenty of options that help our people to thrive.
This role is based in the United Kingdom and as such all normal working days must be carried out in the United Kingdom.
Join us as a Technical Security Analyst
- This is an opportunity to take on a technical role and make a tangible impact on Mettle's growing Security team
- Working in a digital-only environment, you'll adhere to Agile practices and make sure that Mettle is at the forefront of modern security
- You'll work closely with the Head of Security to develop, manage and maintain both intelligence and risk led detections across the cloud infrastructure, SaaS services and end user devices
What you'll do
As a Technical Security Analyst, you’ll provide end to end security response, including triage, response, escalation, and coordination of events and incidents. You’ll carry out and contribute to root cause analysis on security incidents and events, conduct training and scenario planning to prepare for and anticipate future events.
You’ll also be accountable for ensuring that adequate response plans, procedures and playbooks to increase consistency and effectiveness of response capability are created and maintained for all business areas.
You’ll also be:
- Improving detection and visibility for security events across our cloud infrastructure, SaaS applications and native mobile applications
- Helping to shape responses to security events with runbooks and automation where possible
- Working with threat intelligence to proactively build in detections for new threats
- Promoting and implementing new security initiatives, and trialling new security tools
The skills you'll need
We’re looking for someone who’s highly interested in security with an ability to work in a fast paced environment. You’ll need excellent written and verbal communication skills, and the ability to translate complex technical concepts clearly to your peers and management level colleagues.
Ideally, you'll have experience of vulnerability management, threat intelligence and data protection tooling.
In addition, you’ll need:
- Knowledge of security event logging, monitoring, detection and response on one or more of the leading cloud platforms
- An understanding and knowledge of common industry cyber security frameworks, standards and methodologies, including OWASP, MITRE ATT&CK and NIST
- Knowledge of scripting languages such as Python
- Good collaboration and stakeholder management skills, and the ability to work with other teams
If you need any adjustments to support your application, such as information in alternative formats or special requirements to access our buildings, or if you’re eligible under the Disability Confident Scheme please contact us and we’ll do everything we can to help.