Security Engineer

🏡🏢This is a Hybrid role, the Security team work from our London (Shoreditch) Offices 1-2 days per week.

The IT Security Team at Capital on Tap

The Security and Data Protection team make up 6 (after this position is filled) well experienced colleagues, who all work together on their common goal of building and maintaining a modern cyber security function, continuously evaluating and improving on the current posture. Current key projects include improving our SOC capabilities, modernizing our Vulnerability Management programme, and introducing an Application Security function to Capital on Tap.

What You’ll Be Doing
As Security Engineer, you will play a vital role in ensuring our security monitoring and alerting capabilities are functioning effectively.
Responsibilities include management of the SIEM and SOC, identifying and implementing new log sources and use cases, reducing false positive rates and noise of existing alerts, building out and following security playbooks on real-time incidents. 

• Experience with the Microsoft security stack
• Ability to manage and respond to security incidents effectively
• Communication and presentation skills, tailored to the correct audiences 
• A strong understanding of securing cloud technologies
• Continual learner, staying updated on emerging threats, technologies and trends
• Loves to solve problems, capable of making decisions under pressure
• Understanding of ISO27001/NIST/SOC2 frameworks

We’re Looking For 🔎
This position is ideal for a skilled SOC Analyst or Security Incident Responder interested in transitioning into a Security Engineering function and broadening their skillset. 

Required skills:

• Experience with the Microsoft security stack, with specific focus on the following technologies: Defender for Endpoint, Defender for Identity, Defender for Cloud, Sentinel, Entra, Azure Policy, 
• Experience working within the Security Incident Response Lifecycle,Create and review plans and playbooks
• Reviewing and ingesting new log sources into a SIEM
• Working alongside a SOC to ensure alerts are managed effectively
• Responding to security alerts and incidents
• Carrying out post mortems and implementing lessons learned
• Experience working with and securing cloud native technologies
• Experience designing, building and maintaining security tooling
• Experience with ‘defence in depth’ and ‘zero trust’ methodologies to cyber security
• An understanding of running vulnerability management tools and contextualising the results

Nice to have skills:

• An interest in feeding into the Cyber Security Strategy
• An understanding of Cybersecurity frameworks and compliance
• Understanding of network security technologies and protocols
• Ability to work collaboratively and independently depending on the current project

Diversity & Inclusion 🌈
We welcome, consider and encourage applications from anyone who shares our commitment to inclusivity. Join us in creating a space where authenticity thrives, and everyone can do their best work.

Great Work Deserves Great Perks
We try not to take ourselves too seriously (all the time) so we make sure our office is decked out with a pool table, arcade machine, beer tap, and a couple of office dogs thrown in for good measure. Check out our benefits:
🏥 Private Healthcare including dental and opticians services through Vitality
✈️ Worldwide travel insurance through Vitality
🎁 Anniversary Rewards (£250, £500, £750, 4-week fully paid sabbatical)
👛 Salary Sacrifice Pension Scheme up to 7% match
🏖️ 28 days holiday (plus bank holidays)
📖 Annual Learning and Wellbeing Budget
👪 Enhanced Parental Leave
🚲 Cycle to Work Scheme
🚂 Season Ticket Loan
💬 6 free therapy sessions per year
🐶 Dog Friendly Offices
🍫 Free drinks and snacks in our offices

Check out more of our benefits, values and mission here.

Interview Process 🤝
🤝First stage: 30 minute intro and values call with Talent Partner (Video call)
🤝Second stage: 60 minute CV overview and technical discussion with Team Manager (Video call)
🤝Final stage: 45 minute technical discussion and team fit check with Head of Department (In person)