We have been awarded the "Most Loved Workplace"! At Metro Bank, people come first - our culture is all about bringing the best out in our colleagues, and making sure everyone feels valued, respected, seen and included. We strongly believe in a diverse and inclusive workplace and to find the very best person for the job, we always look across a wide range of diverse communities.
What you will do:
- Analyse and triage events from all security tools, ensuring the right actions are taken (further investigations, trigger incidents, flag false positives for fine tuning, etc.).
- Provide support and analysis during security incident and report compilation in conjunction with the Head of Security Operations.
- Manage all other Operational Security incident, request, problem and change tickets that have been logged through the AMAZEING support team or Jira and escalations from the business
- Responsible for the day-to-day operations and scalability requirements of production cybersecurity systems, including firewalls, IDS/NBA, NAC, WAF, content filtering, vulnerability management, AV/EDR, SIEM, DLP, CASB, M365/cloud security, and MDM systems
- Contribute to the development and maintenance of security policies, standards, processes, procedures, and technical documentation including their implementation, maintenance, and compliance
- Participate and support compliance management, i.e. with external regulatory/governing bodies, internal/external audits, IT risk and other stakeholders
And... we are a bank so risk is a part of everything we do. We love people who take responsibility, do the right thing for customers, colleagues and Metro Bank and have the courage to call out any concerns.
What you will need:
- Understand the risks associated with your job and what that means for you, Metro Bank and all our stakeholders
- Relevant IT-related experience with an emphasis on information security
- Security event and incident management and analysis experience
- Experience of industry standard security detection and prevention tools (EDR/SIEM/CASB/Firewalls etc)
- Knowledge of OWASP Top 10, SANS Top 20, ISO27001/2 and industry standard security best practice
- Proven experience in coordinating security and vulnerability Management programs (Regular vulnerability scans)
- Relevant Information Security certifications such as Microsoft Azure Security Technologies (AZ-500, SC-200, SC-300, etc.)
Our promise to you...
- We will make sure that you are well-rewarded by providing you with a competitive salary, discretionary annual bonus, and a wide range of benefits, including generous holiday allowance, attractive pension scheme, healthcare, life assurance, and a number of colleague discounts!
- We will give you the training to ensure you succeed in your role and plenty of internal opportunities to progress your career (around 40% of our recruitment comes from internal promotions!).
- We are also all about balance so most of our jobs offer the opportunity for hybrid working built around your role and home life, wherever possible.