Global IT Operational Security Specialist

Who are we?

SDL is the global leader and innovator in language and content management technology and services. We enable companies to create meaningful digital journeys and form important emotional connections with their global customers by powering the creation, translation and delivery of relevant, personalized content to make understanding possible. We are a dynamic, collaborative and globally diverse team, working together to completely transform how the world communicates and connects with one another through content. If you like making an impact, helping others, taking a fresh look at processes and tools, furthering an open an innovative culture and tend to generally look at even the smallest task in the context of how it impacts the overall organization – we should talk!

What is this role?

SDL are seeking to recruit an Operational Security Specialist to join their team. This is an ideal role for someone who wants to grow their security skills across Network, Infrastructure and Application landscape. The role will involve predominantly BAU support but will also include project work time to time. The ideal candidate will be a self-starter requiring minimal supervision and will be reporting directly to the Global IT Network Manager.

Responsibilities:

• Act as the central point of contract within the business for Security Operations and Escalations.
• Play a role in Incident Response Management investigations and containment
• Strong understanding of security controls to evaluate their effectiveness and the ability to make recommendations to reduce/control any risks identified (KRI/KPI reporting).
• Review and recommend the Identify and Access Management process in line with industry best practice.
• The ability to produce and/or update security investigation documentation such as triage steps and security playbooks
• Follow security playbooks and where necessary follow Incident Response Plan and escalate to senior members of the Information Security/IT Team.
• Perform event triage and incident analysis including initial forensic actions.
• Produce regular security reports for technical individuals as well as senior management.
• Ability to evaluate and/or implement new Security tools.
• Assist in the development of new and changes to existing security policies and standards.
• Support internal and external audits of cyber security.
• The role will use security tooling to detect, investigate and were appropriate triage suspicious or malicious cyber activity.

Key Skills, Experience and Requirements:

• This is a very important and critical role in the context of security, as such the ideal candidate would require skills and/or experience in the following areas;
• Hands on experience in security systems, including firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, content filtering, etc.
• Extensive technical working knowledge of the following systems including:
• Network and Endpoint UTM (FW, AV, AMW, DLP, WCF etc)
• Authentication technologies (AD, IDP, Cisco, MFA/2FA etc)
• Network Access Management
• Privilege/Role Based Access Management.
• Vulnerability and/or Penetration Management tools.
• Familiarity with database and operating system security (SQL, MS, Linux, MAC).
• Confident reading and analysing NetFlow / pcaps
• Solid understanding of TCP/IP, Routing and DNS
• Compliance monitoring (GDPR, ISO etc)
• Defence in Depth techniques.
• Experience in using a SIEM (ELK, Logstash, Splunk etc) for reporting and analysis, with experience in configuring and tuning alerts and alarms and ingesting new log sources
• Monitor threat intelligence feeds and Threat hunting, tracking down of the source
• Previous experience working in a technical information security role with similar responsibilities to the above.

Soft Skills:

• Documentation (Visio, whitepapers, reporting, updating info, presentation, knowledge share)
• Experience of stakeholder engagement and management at various levels and across cultures (internal/external customers, TAC, supplier)
• Character (approachable, flexible, self-starter, engaging, out of the box thinker)
• Ability to learn quickly and adapt to new technologies
• Strong Team player with flexible mind-set and can do' attitude
• Ability to plan out workload and take on responsibility for projects
• Assisting in escalation for all security related issues.

Desirable:

• Network - Cisco ASA, FirePower, ACS/ISE, NAC/802.1x, VRF/VLAN, IP Addressing, Subnetting, DMZ, Pulse Secure products, SDP, ZTNAC
• Sophos Endpoint Security/UTM
• Cloud Secrets Management (Cloud Vaults / Key Management & Rotation / MFA / Passwords).
• Public Cloud (AWS/Azure) security concepts (Virtual Networks/VPC, Log and Incident procedures).
• Scripting tool such as Python, Powershell, etc.
• Security Certification (e.g. CISSP, CEH, OSCP)
• Vendor certifications for Microsoft, Linux, networking or security products
• International experience.

If you are a proactive individual with excellent attention to detail, have a strong approach to work and experience working in an enterprise security role then PLEASE APPLY NOW!

Benefits:

• Infinite training, professional development and personal growth opportunities
• The rare opportunity to impact how organizations communicate globally. There’s a reason we work with 90 of the top 100 brands.
• Smart, engaged co-workers, a culture of innovation and opportunity.
• Great work life balance

To learn more about working at SDL go to http://www.sdl.com/about/career/
Software and Services for Human Understanding