Security Engineer - Harvey Nash

Job Specifications

Between 2 and 3 years' experience:
You monitor the security of our critical servers and systems. You monitor the alarms generated by our security systems and take action on them: you set priorities and escalate an issue when necessary. Based on your knowledge of attack techniques, you will help to find the root cause of security alarms. For this you dive into the log files of servers and systems. You will test and fine tune security alarms and incident response procedures. You will discuss within the teams what to do in case of incidents and how to prevent them in the future. you attend regular team meetings and scrums You document the context of the incident. You help colleagues who are resolving the incident with additional analyses, if necessary. You help ensure that we are working according to the right priorities. Depending on the action taken on the incident, you close it, put it on hold, have it looked at again or escalate it. Your guide here is our runbook. You also provide suggestions on what action to take. You participate in sessions on continuous improvement and help think through these questions: o What lessons can we learn from how certain incidents were handled? Can things be done differently or better next time? o What are the weaknesses in our security controls? o Can our processes be more efficient? Do we pass on information to each other in the best way?

Responsibilities - You have a broad view on the IT Operating systems & middleware (Windows, Unix, Linux, databases) and networks; You have general to good knowledge of malware (types) and cyber-attack techniques (the kill chain); Other pluses - Knowledge of and experience with: security tools for detection and analysis security events ticketing systems network security, firewall, IDS, ...

You monitor the security of our critical servers and systems.
You monitor the alarms generated by our security systems and take action on them: you set priorities and escalate an issue when necessary.
Based on your knowledge of attack techniques, you will help to find the root cause of security alarms. For this you dive into the log files of servers and systems.
You will test and fine tune security alarms and incident response procedures.
You will discuss within the teams what to do in case of incidents and how to prevent them in the future.
you attend regular team meetings and scrums
You document the context of the incident.
You help colleagues who are resolving the incident with additional analyses, if necessary.
You help ensure that we are working according to the right priorities.
Depending on the action taken on the incident, you close it, put it on hold, have it looked at again or escalate it. Your guide here is our runbook. You also provide suggestions on what action to take.
You participate in sessions on continuous improvement and help think through these questions: o What lessons can we learn from how certain incidents were handled? Can things be done differently or better next time? o What are the weaknesses in our security controls? o Can our processes be more efficient? Do we pass on information to each other in the best way?

Preferred Skills

You have a broad view on the IT Operating systems & middleware (Windows, Unix, Linux, databases) and networks;
You have general to good knowledge of malware (types) and cyber-attack techniques (the kill chain);
Other pluses - Knowledge of and experience with: security tools for detection and analysis security events ticketing systems network security, firewall, IDS, ...

About the Company

We’re Harvey Nash, and we build amazing technology and digital teams. From senior appointments through to recruitment and project solutions, we are experts in the tech sector. Established in 1988, we have helped over half the world’s leading companies recruit, retain, source and manage the highly skilled tech talent they need to succeed in an increasingly competitive, global and technology driven world. With over 3.300 staff in more than 49 offices across Europe, Asia-Pacific and the U.S and Canada, we have built a rep... Know more