Mountain Warehouse

  • Cyber Security / Security Operations Engineer

    Job Locations UK-London
    ID
    2018-1299
    Category
    Information Technology
  • Overview

    Mountain Warehouse are looking to make a step change in the way that we handle our IT security, infrastructure, and DevOps. We’re now looking to find the right person to dedicate their time to security within our IT department.

    What you'll be doing

    You will be working closely with the IT Department and the wider business to support in the prevention of hacking. The Security Operations Engineer will be able to analyse and implement security initiatives and identify new projects to increase our security.

    • Work closely with the CISO to report on the security risk and compliance within the business
    • Work on our security initiatives and projects to a high standard.
    • Identify new security projects and initiatives.
    • Provide expert support to other IT disciplines around security.
    • Input into security policy documents.
    • Support security training plans for the company.
    • Report directly into the Head of Infrastructure.

    We would love to meet someone with

    Essential:

    • At least 1 year of commercial experience within a SecOps role.
    • Experience of Rapid7 or similar tooling.
    • Experience of network design.
    • Someone who can self-organise and who can communicate their work in a professional manner (or in other words, keep JIRA up to date).
    • A desire to create simple / low-maintenance and effective solutions.
    • Willingness and capability to support and troubleshoot day to day issues.

    Experience with / knowledge of the following would be desirable:

    • Infrastructure-as-code tools.
    • Ethical hacking.
    • Azure or other cloud.
    • PCI compliance.
    • GDPR risk management.
    • OWASP Top 10.
    • IPS e.g. Snort.
    • Vulnerability scanners e.g. Nessus, Qualys.
    • ISO27001 or NIST CSF.

    You will have freedom when it comes to defining the tooling we use in the future. Most of our systems are on our own hardware in a third-party datacentre in London, we are using some Azure and would like to use more but are likely to always want to remain as “hybrid cloud”.

     

    Company culture

    • The department is light on formal meetings – you will be able to spend most of your time doing instead of talking.
    • In IT we are aware that there is always something new to learn and so we have a dedicated training budget, monthly free-form self-development days, two hack events a year and regular lunch’n’learns.
    • As a privately-owned company we tend to be fast-moving, and as we’re profitable and growing we tend to be able to afford the tools and hardware we need.
    • The IT department is over the road from the rest of head office. We have a large, modern open-space environment that’s been recently refurbished.
    • It’s a sociable environment - the current team tend to go for lunch most days, the local pub is occupied by the company most Fridays.

    What's in it for you?

    • Competitive salary and benefits
    • Holiday allowance
    • 50% staff discount & 25% for family and friends
    • Private medical cover
    • Pension scheme
    • Life Insurance (eligible after a probationary period)
    • Travel season ticket loan (eligible after a probationary period)
    • Cycle to work scheme (eligible after a probationary period)
    • Childcare voucher scheme (eligible after a probationary period)
    • Free Yoga and Pilates classes on site
    • Fresh fruit daily
    • Fully subsidised summer and Christmas parties

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed