Our people work differently depending on their jobs and needs. From hybrid working to flexible hours, we have plenty of options that help our people to thrive.
This role is based in the United Kingdom and as such all normal working days must be carried out in the United Kingdom.
Join us as a Lead Security Analyst
- Become a key member of Mettle’s growing security team, working closely with our Chief Information Security Officer to build our security operation capabilities
- Day-to-day, you’ll be part of a digital-only environment that’ll require you to adhere to Agile practices and make sure that Mettle is at the forefront of modern security
- Thrive in a role that’ll have you managing security operations to maintain intelligence- and risk-led detections across our Cloud infrastructures, SaaS services and end user devices
What you’ll do
As a Lead Security Analyst, you’ll provide an end-to-end security response, including triage, response, escalation and the coordination of events. You’ll also contribute to the root cause analysis of security incidents and conduct training and scenario planning to prepare for future events.
As well as this, you’ll be responsible for making sure that adequate response plans, procedures and playbooks are created and maintained for all business areas to increase the consistency and effectiveness of our response capability.
In addition to this, you’ll be:
- Building our improved security data lake and implementing clear use cases
- Using business as usual capabilities to cover vulnerability management, threat intel and threat hunting and working with threat intelligence to build in detections for new threats
- Improving detection and visibility for security events across our Cloud infrastructures and SaaS and native mobile applications
- Shaping responses to security events with runbooks and automation where possible
- Promoting and implementing new security initiatives while performing trials for new security tools
The skills you’ll need
To be successful in this role, you’ll need the ability to translate complex technical concepts clearly to your peers and management level colleagues. Experience of mentoring and leading small teams and building security operation capabilities from scratch would be beneficial.
You’ll have a good understanding of common industry cyber security frameworks, standards and methodologies, including the Open Web Application Security Project, MITRE, Adversarial Tactics, Techniques and Common Knowledge and the National Institute of Standards and Technology.
Furthermore, you’ll need:
- An excellent knowledge of security event logging, monitoring, detection and responses on one or more of the leading Cloud platforms
- The ability to work in a fast-paced environment and an understanding of scripting languages, like Python
- Experience of vulnerability management, threat intel and data protection capabilities and knowledge of how to work with other teams
- An interest in security and an understanding of how to learn and grow within a team
- Experience of building security monitoring and response capabilities and excellent written and verbal communication, collaboration and stakeholder management skills
If you need any adjustments to support your application, such as information in alternative formats or special requirements to access our buildings, or if you’re eligible under the Disability Confident Scheme please contact us and we’ll do everything we can to help.