Founded in 1856 by Thomas Burberry, Burberry is a global luxury brand with a distinctly British attitude. We are a global business with an extensive network of both owned and franchised stores across EMEIA, Asia Pacific and Americas. We are digital pioneers, and innovative technology underpins every aspect of our business, from product design to distribution and marketing. We believe that modern luxury means being socially and environmentally responsible; this mindset is core to our business and key to our long-term success.

Provide security monitoring and incident response services as part of a Security Operations team.

• Perform security alert detection and analysis activities across multiple technologies to ensure that security incidents are identified in a timely manner.
• Assessment of security incidents, including determining criticality in line with defined criteria.
• Provide escalation and/or management of security incidents in line with process.
• Provides support during incident response activities, including liaising with suppliers and other business teams.
• Provide continuous service improvement and development.
• Provision of regular and ad hoc security reports.
• Provide assurance of changes to security systems
• Identification of security system status or security changes that are not in line with process.
• Provides ownership and support of security operations continuous improvement initiatives.
• Participate in a 24x7 security incident response on-call rotation.

Mandatory:

• IT Security/Information Security
• Experienced SIEM usage (preferably Splunk)
• Scripting knowledge (PowerShell, Python, VB, etc)
• Experience with at least one of the following security technologies: Splunk, Tanium, McAfee ePO
• Security configuration experience with at least one of the following platforms: Windows server, Windows desktop, Ubuntu, Redhat, Mac OSX
• Application security knowledge (preferably including SAP and/or .com platforms)
• Excellent analytical and problem solving capabilities
• High attention to detail
• Experience with Malware Analysis
• Experience with Virtualized Malware Environments & best practices

Desirable:

• Incident Management (CSIRT) Experience
• Security knowledge in one or more of following areas: Splunk, Tanium, Windows (server and desktop), Unix (multiple flavours), MAC OS X, McAfee EPO, Office 365, IDS/IPS tools
• Malware analysis.

Mandatory:

• Experienced security analyst with a record of security monitoring.
• Experience in using SIEM tools to monitor and investigate attacks and other security events.
• Experience in using network security tools (firewall, IDS/IPS, proxies) to monitor and investigate attacks
• Experience in working in an environment with robust change and incident processes.
• Experience in analysing security device and system logs, packet captures, with the ability to reconstruct and determine the sequence of events and/or cause of identified incidents.
• Must be familiar with and keep up to date on cyber security threats, attacks and vulnerabilities.

Experience:

• Experience of being part of an incident response team
• Application security.
• Firewall experience.
• Retail sector or .com experience.
• Experience of working in a globally distributed team.
• Experience with Scripting (PowerShell, Python, VB, etc).
• Experience in mentoring Junior Security Analysts.
• Experience with Incident Response.
• Experience with handling P1/P2 Incidents.
• Bachelors or Masters Degree in relevant Technology/IT Security subject.
• Relevant academic or industry certification relevant qualifications such as CISSP, CEH, GIAC-GCIA.
• Splunk Certifications Beneficial.

Autonomy:

• Works under routine direction
• Uses discretion in identifying and resolving complex problems and assignments.
• Determines when issues should be escalated to a higher level.

Influence:

• Interacts with and influences department/project team members.
• May supervise in predictable and structured areas.

Complexity:

• Performs a broad range of work, sometimes complex and non-routine, in a variety of environments.

Business Skills:

• Understands and uses methods, tools & applications.
• Demonstrates analytical & systematic problem solving.
• Absorbs and applies technical information.
• Communicates effectively.
• Takes initiative in development opportunities.
• Plans work competently within deadlines, standards & procedures.
• Contributes fully to the team.
• Appreciates and relates to wider areas.