Job Details

Senior Security Operations Engineer

octoenergy

Category

DevOps / Sysadmin

Experience

-

Employee type

Full-time

Offer Salary

-

Job Description

Help us use technology to make a big green dent in the universe!
 
Kraken powers some of the most innovative global developments in energy.
 
We’re a technology company focused on creating a smart, sustainable energy system. From optimising renewable generation, creating a more intelligent grid and enabling utilities to provide excellent customer experiences, our operating system for energy is transforming the industry around the world in a way that benefits everyone.
 
It’s a really exciting time in energy. Help us make a real impact on shaping a better, more sustainable future.
 
 
Kraken Customer
 
What we do: Build the most AI-driven, innovative, forward-thinking platform for energy management. From optimizing resources to delivering cost-effective, exceptional customer experiences through advanced Customer Information Systems (CIS), billing, meter data management, CRM, and AI-driven communications, Kraken is powering the next wave of innovation in the energy industry.
 
Why we do it: Future energy will not look like energy as we know it today. We need to not just think about our future, but build for it. Now.
 
We are looking for mid-level (>2 years experience) or senior engineers to join us at Kraken Technologies. The role may suit people with SOC experience who are looking to focus more on the engineering side, people with an engineering background that want to specialise in security and people with a TechOps background that would like to focus on security tooling.
 
You’ll be part of a small but growing security team with a wide range of active and planned projects across the entire Octopus Energy Group. There will be plenty of opportunity to leverage your experience and expertise, and also learn new things.



What you’ll do
  • You will be supporting the following activities:
  • Maintaining Security logging, monitoring and alerting process and tooling
  • Responding to security alerts, improving detections and reducing false positives 
  • Operating Security tooling inline with best practices and internal requirements
  • Assisting TechOps and other teams in maintaining their services in line with good security practises
  • Supporting security incident response, remediation and root cause analysis
  • Helping to manage AWS native security services
  • Participate in the company's information security program, contributing to the development and implementation of security policies and procedures
  • Collaborate with colleagues across various teams, such as Security Assurance, Security Operations, and Security Engineering, to support the execution of security strategies and initiatives.
  • Supporting the implementation of security processes and requirementsKeep up-to-date with emerging security threats, technologies, and industry trends to help enhance the organisation's security approach.



What you’ll have
  • Strong background in information security and technology, with an understanding of security best practices and standards.
  • Previous experience in working in security teams maintaining and improving security logging, monitoring and alerting including playbooks, and indecent response
  • Experience in managing security tooling inline with best practice, such as:
  • Endpoint security (e.g. EDR, MDM)
  • Email SecuritySIEM and SOAR systems (or anything related to logging, monitoring and automation)
  • Vulnerability management tooling (e.g. vulnerability scanning, CSPM, CNAPP)
(Note: we do not expect any candidate to have experience in all the above tooling, just experience in some and an interest in learning about others)



What will help
  • Security certifications (any of the famous abbreviations) 
  • Certifications from cloud providers’ certification paths
  • Security qualifications (e.g. apprenticeships or degrees)
  • Strong skills in creating high-quality, comprehensive security documentation
  • Familiarity with AWS services and experience in managing cloud security services
  • Experience using logging tools (whether this was a SIEM system or not) to generate alerts and reports
  • Understanding of information security standards such as ISO 27001
  • Knowledge of the MITRE ATT&CK framework
If this sounds like you then we'd love to hear from you. Are you ready for a career with us? We want to ensure you have all the tools and environment you need to unleash your potential. Need any specific accommodations? Whether you require specific accommodations or have a unique preference, let us know, and we'll do what we can to customise your interview process for comfort and maximum magic!
 
Studies have shown that some groups of people, like women, are less likely to apply to a role unless they meet 100% of the job requirements. Whoever you are, if you like one of our jobs, we encourage you to apply as you might just be the candidate we hire. Across Octopus, we're looking for genuinely decent people who are honest and empathetic. Our people are our strongest asset and the unique skills and perspectives people bring to the team are the driving force of our success. As an equal opportunity employer, we do not discriminate on the basis of any protected attribute. Our commitment is to provide equal opportunities, an inclusive work environment, and fairness for everyone.

information security
Senior Security Engineer
DevOps / Sysadmin Full-time 🌎 Worldwide
Published : 1 year ago
AWS Cloud Support Engineer
DevOps / Sysadmin Full-time 🇬🇧 UK
Published : 1 year ago
Senior Security Engineer
DevOps / Sysadmin Full-time 🌎 Worldwide
Published : 1 year ago