Security Operations Lead

Job Opportunity

It's fun to work in a company where people truly believe in what they are doing! We're committed to bringing passion and customer focus to the business.

Responsibilities (KRAs / deliverables/ job expectations)

• Lead a team of security analysts through an 8-hour rotational shift schedule.
• Conduct real-time security monitoring and respond to incidents across various networks utilizing a multitude of tools and methodologies.
• Maintain support for the group's infrastructure to ensure service levels meet expectations.
• Develop and manage Security Information and Event Management (SIEM) use cases.
• Identify and document incidents through proactive threat hunting procedures.
• Execute vulnerability assessments within Halma's network infrastructure and collaborate with stakeholders to mitigate identified risks.
• Design and refine the Incident Response Playbook for improved reaction protocols.
• Conduct thorough post-incident analyses to enhance and fine-tune Halma's incident response processes.
• Scout for innovative control measures and solutions to bolster security.
• Actively offer innovative suggestions to advance the performance of Halma IT's services.
• As a member of the global IT team, promptly address incidents and service requests in accordance with established Service Level Agreements (SLAs).
• Provide technical support for Halma's security infrastructure, including SIEM, VPN, Antivirus, Endpoint Detection & Response (EDR), and Endpoint Management systems.
• Possess a strong understanding of Windows/macOS operating systems, including knowledge of Event Viewer logs, device encryption, and Windows Registry.
• The candidate should possess knowledge of integrating devices with Azure Active Directory and managing device enrollment with Microsoft Intune, as well as configuring Microsoft Defender for endpoint protection.
• Monitor and manage security incidents for Halma's headquarters and subsidiary companies.
• Employ creative problem-solving skills during security incidents and alerts investigations, with a preference for expertise in threat hunting and proactive analysis.
• Undertake additional tasks such as generating monthly vulnerability reports, conducting ticket hygiene checks, and fostering process improvements.

If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us!

Not the right fit? Let us know you're interested in a future opportunity by clicking Introduce Yourself in the top-right corner of the page or create an account to set up email alerts as new job postings become available that meet your interest!