Security SOC Analyst - Level 3
Who we're looking for
The Schroders Information Security team provides the scale and brand of a large financial services organisation with the freedom to be creative and nimble in how we work. Our team members are exposed to a wide set of technologies, people and opportunities and we expect them to make continuous iterative improvement to the defence of the firm.
We aim to avoid large projects with unclear benefits and overly restricting the team member's remits on specific security disciplines. Finally, we put great importance on the reputation of the Information Security team across the firm and value unconditional collaboration, understanding of business aims and pragmatic risk taking based on a clear understanding of the threat landscape.
About Schroders
We're a global investment manager. We help institutions, intermediaries and individuals around the world invest money to meet their goals, fulfil their ambitions, and prepare for the future.We have around 5,000 people on six continents. And we've been around for over 200 years, but keep adapting as society and technology changes. What doesn't change is our commitment to helping our clients, and society, prosper.
Technology at Schroders
There's a huge amount of change going on at Schroders. Technology's shaping our business more and more, so there are many opportunities waiting to be grabbed. And because we're a big financial player, we can put hefty backing behind good ideas.
We're a serious business - we have enormous responsibilities to our clients and shareholders. But just because we're suited and booted, that doesn't make us stuffy; our tech teams are friendlier and more informal than you might expect.
The base
We moved into our new HQ in the City of London in 2018. We're close to our clients, in the heart of the UK's financial centre. And we have everything we need to work flexibly.
The team
The Schroders Global Information Security team protect the organisation's information assets against an evolving threat landscape. ~40 security professionals around the world enable Schroders to deliver services to clients in a secure manner and defend those services against any attack on their confidentiality, integrity and availability.
What you'll do
You will provide security analysis of security events, monitor, manage and support highly secure, complex environments with a focus on security event management, vulnerability management and next-generation intrusion prevention / firewalling. Also assisting in the development and management of internal and external security testing programmes, executing in-depth penetration and testing of infrastructure, researching and developing internal security tools.
You will:
• Lead security detection and response activities with your knowledge and expertise
• Analyse multiple security data sources to determine where malicious activities are occurring and respond accordingly
• Identify missing controls and adjustment of security tooling to provide compensation of remediation
• Work with IT technical teams to deliver Information Security services and improvements
• Mentor a team of Security analysts though security events and incidents and help shape their development to become the next generation of cyber security professionals
• Assist with management information creation to provide context to a number of oversight boards
The knowledge, experience and qualifications you need
• Be able to analyse and investigate alerts arising from SIEM tools
• Experience performing security assessment and penetration testing tools
• Experience of working with incidents either within a Security Operations Centre or Incident Response capacity
• Excellent communication skills, both written and spoken English; with the confidence to brief management
• Experience undertaking incident response and investigations within a Cloud environment
The knowledge, experience and qualifications that will help
• CCP, CISSP, OSCP or SANS/GIAC strongly preferred
• Knowledge of incident management / ticketing platform eg ServiceNow
• Experience of security tools such as Splunk, Tanium, Sentinel
• Experience using a scripting language
• Understating of Agile principles
What you'll be like
• You'll have ability to work well under pressure
• Self motivated self starter
• Lateral thinker
• Team player
• Good attention to detail
We're looking for the best, whoever they are
Schroders is an equal opportunities employer. You're welcome here whatever your socio-economic background, race, sex, gender identity, sexual orientation, religious belief, age or disability.
