Description
Role Description
At FNZ, our purpose is to make wealth management more accessible, bringing easier, fairer and more inclusive solutions to people worldwide. Here in the Global Information Security team, we work to protect the platforms that support investment solutions for over 20 million people. We are looking for a Cyber Security Incident Response Lead to join the Security Operations team. You will be an expert in incident management, security risk concepts and technical security. You will be defining and leading the incident response function under direction from the cyber security incident response and operations manager. You will be responsible for escalations from the SOC as well as medium and low severity incidents and be a major part of the investigation for higher severities. Between incidents you will be assisting in improvements in detection engineering/design updating and maintain incident playbooks, threat hunting with assistance from the threat intelligence team and training incident response analysts. You will be joining an experienced team and working to support some of the biggest financial services clients in the world. Reporting directly to the Cyber Security Incident Response and Operations Manager, you will lead a newly created incident response team and be looking to prepare a good foundation and maturity to the incident response processes.
Specific Role Responsibilities
Incident Management: Supporting with major incidents and being second in command as backup for leading cyber security events.
Security Operations Center (SOC) Management: Be an escalation point for the SOC team for identified potential major incidents.
Security Incident Response: Develop and maintain an incident response plan, conduct periodic exercises to test the response readiness of the team, continually enhance the incident response process.
Team Training and Development: Provide mentorship and training to security analysts, ensuring they are equipped with necessary skills & knowledge.
Security Incident Remediation: Coordinate with IT & infrastructure teams to implement necessary remediation actions following security incidents including applying patches or deploying new measures.
Triage of alerts from FNZ Group systems
Analysis of alerts & escalation where required
Following Standard Operating Procedures & playbooks
Supporting development & enhancement of SIEM detection & playbooks
Experience Required
Primary Requirements
- Excellent spoken & written English
- Significant Experience of Incident Response (triage, classification, investigation)
- Good working knowledge of networking protocols (capture, Wireshark)
- Good knowledge of Operating Systems (Windows/Linux), Databases (SQL), Applications (F5)
- Well versed in SIEM tools (Splunk/Sentinel)
- Well versed in EDR tools (Defender/Crowdstrike)
- Knowledge of security concepts (MITRE/Kill-Chain)
- Significant experience in major incident handling
- Willingness to participate on-call rota for escalations
About FNZ Culture
Our culture is what drives us; it's at heart who we are & everything we do; it inspires us forward. Our ambition is creating a culture for growth that opens limitless opportunities for employees/customers worldwide; great impact is only possible through teamwork; we value strength/diversity within our global teams.
The FNZ Way comprises four values:
1. Customer obsessed long-term
2. Think big/make impact
3. Act now/own it all
4. Challenge/commit/win together
Opportunities
Right from day one:
You’ll work alongside exceptional multicultural teams - experts who inspire/challenge you.
Be part of a highly successful rapidly growing global business delivering financial services via cloud computing partnering with large companies.
Work flexibly/agilely meeting business/personal needs.
Remuneration/rewards/career advancement based on individual contribution/business impact rather than tenure/seniority.
Global career opportunities available at any offices across UK/EU/US/Canada/South Africa/APAC.
Commitment To Equal Opportunities
At FNZ diversity/equity/inclusion contribute significantly towards success; embracing unique perspectives/capabilities helps drive innovation/business goals forward; recruitment decisions made non-discriminatory without regard towards gender/race/faith/age/nationality/gender identity/orientation/marital status/socio-economic background/disability/military veteran status where all applicants/employees valued/respected.
We ensure accessibility needs supported – please advise if specific support required.
About FNZ
FNZ committed opening up wealth so everyone can invest future terms; complexity holds firms back despite existing foundations within wealth management industry – hence creation growth platform helping provide global end-to-end wealth management integrating modern technology/business/investment operations within regulated financial institution partnering over 650 institutions managing US$1.5 trillion AUA helping over 20 million individuals across all segments invest future effectively together customers!