At a Glance
- Tasks: Lead security operations and protect our digital assets across various domains.
- Company: Join Crown Agents Bank, a rapidly growing UK bank transforming payments in emerging markets.
- Benefits: Competitive salary, flexible working options, and opportunities for professional growth.
- Other info: Dynamic team environment with a focus on innovation and impact.
- Why this job: Make a real difference in global finance while enhancing your cybersecurity skills.
- Qualifications: Experience in operational security and relevant certifications are a plus.
The predicted salary is between 60000 - 80000 € per year.
Crown Agents Bank is a vastly growing and regulated UK bank that connects emerging and frontier markets to the rest of the world, using FX and payments technology. We are transforming the way payments and FX move through emerging markets, reducing friction so that more money gets to those who need it. Emerging markets payments are usually challenging, expensive, unreliable and opaque. Our solutions help fix these pain points. Ultimately, we connect traditionally hard-to-reach regions to global financial infrastructure, giving access to the best prices and the fastest, most reliable settlement.
Job Description
The Senior Operational Security Engineer owns and operates the firm’s core protective and detective security controls across endpoint, network, identity and data security domains, converting multiple best-efforts operational security activities into sustainable, auditable and scalable services.
- Security Operations — Endpoint & Network
- Own and operate Endpoint Detection & Response (EDR) tooling including alert triage, threat containment and endpoint health monitoring across all firm devices.
- Enforce endpoint security baselines, compliance checks and hardening standards across the estate.
- Manage anti-malware controls including policy configuration, update management and alert response.
- Configure and manage firewall and Web Application Firewall (WAF) controls, network segmentation, and remote access security.
- Working closely with the SD and Workspace team to maintain baseline security standards across endpoint environments.
- Own email security controls including anti-spam, anti-phishing, DMARC/DKIM/SPF and attachment scanning.
- Manage web filtering, proxy controls and malicious URL/content blocking.
- Identity & Access Management
- Administer and manage multi-factor authentication (MFA) and single sign-on (SSO) solutions across the firm.
- Manage Privileged Access Management (PAM/PIM) controls including PAM/PIM platform administration and privileged session management.
- Own joiner, mover and leaver (JML) processes across all systems, ensuring timely and accurate access changes.
- Run periodic access review and recertification cycles, ensuring least-privilege is maintained across the estate.
- Support customer-facing access controls and authentication governance.
- Data Security
- Manage Data Loss Prevention (DLP) controls including policy configuration, alert triage and response for data exfiltration events.
- Oversee data classification, retention, archiving and disposal controls within M365 and across the estate.
- Support insider threat monitoring controls and escalation procedures.
- Manage encryption standards and certificate lifecycle including monitoring, renewal and revocation.
- Detection & Response
- Triage and analyse security alerts from across the tooling estate, coordinating with the SOC to ensure timely detection and response.
- Lead threat hunting activities using XDR telemetry and threat intelligence to proactively identify attacker activity.
- Own and maintain the XDR platform including rule management, integrations and telemetry quality.
- Investigate security incidents, anomalous activity and SOC escalations, producing clear findings and recommendations.
- Develop and maintain incident response runbooks covering key threat scenarios and response procedures.
- Own ransomware readiness and business resilience testing activities, including backup validation and playbook maintenance.
- Manage security automation and SOAR playbook development to improve detection and response efficiency.
- Provide operational interface with the SOC, supporting SLA management and technical escalation.
- Operational Reporting
- Produce clear, accurate and timely reporting covering endpoint health, network control status, DLP alert volumes, IAM control health and incident metrics.
- Contribute security operations data and metrics to the master CISO reporting pack.
Qualifications
- Degree or equivalent professional experience in a relevant technical discipline.
- Relevant industry certification desirable, such as SC-200, AZ-500, CompTIA Security+, GIAC (GCIA, GCED, GCIH) or CISSP.
- Candidates with strong hands‑on experience and demonstrable technical capability will be considered regardless of formal qualification.
- Significant hands‑on experience in an operational information security or security engineering role.
- Demonstrable experience managing EDR/AV, SIEM/XDR platforms, and network security controls including firewalls, WAF and segmentation.
- Practical experience with identity and access management including MFA, PAM/PIM and access review processes.
- Experience with the enterprise security solutions suites (Endpoint, Cloud, XDR, Identity, etc) and Purview/DLP.
- Working knowledge of PAM tooling.
- Experience in a regulated financial services environment preferred but not essential; working knowledge of ISO 27001, NIST CSF, DORA or NYDFS Part 500 beneficial.
- Ability to produce clear technical documentation, reports and evidence suitable for audit and regulatory review.
Senior Operational Security Engineer in London employer: Crown Agents Bank Ltd.
Crown Agents Bank is an exceptional employer that fosters a dynamic and inclusive work culture, where innovation meets purpose in transforming financial services for emerging markets. Employees benefit from comprehensive professional development opportunities, competitive remuneration, and a commitment to work-life balance, all while contributing to meaningful projects that make a real difference in the world. Located in the heart of the UK, CAB offers a collaborative environment that encourages creativity and growth, making it an ideal place for passionate individuals looking to advance their careers in operational security.
StudySmarter Expert Advice🤫
We think this is how you could land Senior Operational Security Engineer in London
✨Tip Number 1
Network, network, network! Get out there and connect with people in the industry. Attend meetups, webinars, or even just grab a coffee with someone who works at Crown Agents Bank. Building relationships can open doors that a CV just can't.
✨Tip Number 2
Show off your skills! If you’ve got hands-on experience with EDR, SIEM, or any of the security tools mentioned in the job description, make sure to highlight that in conversations. Share specific examples of how you've tackled security challenges in the past.
✨Tip Number 3
Prepare for the interview by brushing up on the latest trends in operational security. Be ready to discuss how you would approach endpoint security or data loss prevention. We want to see your passion and knowledge shine through!
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you’re genuinely interested in joining our team at Crown Agents Bank.
We think you need these skills to ace Senior Operational Security Engineer in London
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Senior Operational Security Engineer role. Highlight your relevant experience with EDR, network security, and identity management. We want to see how your skills align with our needs!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're passionate about operational security and how you can contribute to our mission at Crown Agents Bank. Keep it concise but impactful.
Showcase Your Certifications:If you've got any relevant certifications like SC-200 or CISSP, make sure to mention them! They can really set you apart from other candidates. We love seeing that commitment to professional development.
Apply Through Our Website:We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it’s super easy!
How to prepare for a job interview at Crown Agents Bank Ltd.
✨Know Your Security Tools
Make sure you’re well-versed in the specific security tools mentioned in the job description, like EDR, SIEM/XDR platforms, and firewalls. Be ready to discuss your hands-on experience with these tools and how you've used them to enhance security in previous roles.
✨Demonstrate Problem-Solving Skills
Prepare to share examples of how you've triaged security alerts or managed incidents in the past. Highlight your analytical skills and how you approach problem-solving, especially in high-pressure situations. This will show that you can handle the demands of the role.
✨Understand Regulatory Frameworks
Familiarise yourself with relevant regulations like ISO 27001 or NIST CSF. Even if you don’t have direct experience, showing that you understand these frameworks and their importance in a regulated environment will impress the interviewers.
✨Prepare for Technical Questions
Expect technical questions that test your knowledge of data security, identity management, and incident response. Brush up on key concepts and be ready to explain your thought process clearly. This will demonstrate your expertise and confidence in the field.
