At a Glance
- Tasks: Lead security operations and protect our digital assets across various domains.
- Company: Join Crown Agents Bank, a rapidly growing UK bank transforming payments in emerging markets.
- Benefits: Competitive salary, flexible working options, and opportunities for professional growth.
- Other info: Dynamic work environment with a focus on innovation and collaboration.
- Why this job: Make a real impact on global financial infrastructure and enhance security in emerging markets.
- Qualifications: Experience in operational security and relevant certifications preferred.
The predicted salary is between 60000 - 80000 € per year.
Crown Agents Bank is a vastly growing and regulated UK bank that connects emerging and frontier markets to the rest of the world, using FX and payments technology. We are transforming the way payments and FX move through emerging markets, reducing friction so that more money gets to those who need it. Emerging markets payments are usually challenging, expensive, unreliable and opaque. Our solutions help fix these pain points. Ultimately, we connect traditionally hard-to-reach regions to global financial infrastructure, giving access to the best prices and the fastest, most reliable settlement.
FX and cross-border payments are often complex and expensive, especially when operating in emerging markets. Crown Agents Bank (CAB) wraps its deep and trusted relationships and strength of network around innovative digital capabilities, and cross-border transaction banking solutions to enable fintech, corporates, governments, development organisations and banks to move money to, from, and across often hard-to-reach markets.
The Senior Operational Security Engineer owns and operates the firm’s core protective and detective security controls across endpoint, network, identity and data security domains, converting multiple best-efforts operational security activities into sustainable, auditable and scalable services.
- Security Operations — Endpoint & Network
- Own and operate Endpoint Detection & Response (EDR) tooling including alert triage, threat containment and endpoint health monitoring across all firm devices.
- Enforce endpoint security baselines, compliance checks and hardening standards across the estate.
- Manage anti-malware controls including policy configuration, update management and alert response.
- Configure and manage firewall and Web Application Firewall (WAF) controls, network segmentation, and remote access security.
- Working closely with the SD and Workspace team to maintain baseline security standards across endpoint environments.
- Own email security controls including anti-spam, anti-phishing, DMARC/DKIM/SPF and attachment scanning.
- Manage web filtering, proxy controls and malicious URL/content blocking.
- Identity & Access Management
- Administer and manage multi-factor authentication (MFA) and single sign-on (SSO) solutions across the firm.
- Manage Privileged Access Management (PAM/PIM) controls including PAM/PIM platform administration and privileged session management.
- Own joiner, mover and leaver (JML) processes across all systems, ensuring timely and accurate access changes.
- Run periodic access review and recertification cycles, ensuring least-privilege is maintained across the estate.
- Support customer-facing access controls and authentication governance.
- Data Security
- Manage Data Loss Prevention (DLP) controls including policy configuration, alert triage and response for data exfiltration events.
- Oversee data classification, retention, archiving and disposal controls within M365 and across the estate.
- Support insider threat monitoring controls and escalation procedures.
- Manage encryption standards and certificate lifecycle including monitoring, renewal and revocation.
- Detection & Response
- Triage and analyse security alerts from across the tooling estate, coordinating with the SOC to ensure timely detection and response.
- Lead threat hunting activities using XDR telemetry and threat intelligence to proactively identify attacker activity.
- Own and maintain the XDR platform including rule management, integrations and telemetry quality.
- Investigate security incidents, anomalous activity and SOC escalations, producing clear findings and recommendations.
- Develop and maintain incident response runbooks covering key threat scenarios and response procedures.
- Own ransomware readiness and business resilience testing activities, including backup validation and playbook maintenance.
- Manage security automation and SOAR playbook development to improve detection and response efficiency.
- Provide operational interface with the SOC, supporting SLA management and technical escalation.
- Operational Reporting
- Produce clear, accurate and timely reporting covering endpoint health, network control status, DLP alert volumes, IAM control health and incident metrics.
- Contribute security operations data and metrics to the master CISO reporting pack.
Qualifications
- Degree or equivalent professional experience in a relevant technical discipline.
- Relevant industry certification desirable, such as SC-200, AZ-500, CompTIA Security+, GIAC (GCIA, GCED, GCIH) or CISSP.
- Significant hands-on experience in an operational information security or security engineering role.
- Demonstrable experience managing EDR/AV, SIEM/XDR platforms, and network security controls including firewalls, WAF and segmentation.
- Practical experience with identity and access management including MFA, PAM/PIM and access review processes.
- Experience with the enterprise security solutions suites (Endpoint, Cloud, XDR, Identity, etc) and Purview/DLP.
- Working knowledge of PAM tooling.
- Experience in a regulated financial services environment preferred but not essential; working knowledge of ISO 27001, NIST CSF, DORA or NYDFS Part 500 beneficial.
- Ability to produce clear technical documentation, reports and evidence suitable for audit and regulatory review.
Senior Operational Security Engineer employer: Crown Agents Bank Ltd.
Crown Agents Bank is an exceptional employer that fosters a dynamic and inclusive work culture, dedicated to transforming the financial landscape of emerging markets. Employees benefit from comprehensive professional development opportunities, competitive remuneration, and a commitment to work-life balance, all while contributing to meaningful projects that have a global impact. Located in the heart of the UK, CAB offers a collaborative environment where innovation thrives, making it an ideal place for those looking to advance their careers in operational security within a forward-thinking banking institution.
StudySmarter Expert Advice🤫
We think this is how you could land Senior Operational Security Engineer
✨Tip Number 1
Network, network, network! Get out there and connect with people in the industry. Attend meetups, webinars, or even just grab a coffee with someone who works at Crown Agents Bank. Building relationships can open doors that a CV just can't.
✨Tip Number 2
Show off your skills! If you’ve got hands-on experience with EDR, SIEM, or any of the security tools mentioned in the job description, make sure to highlight that in conversations. Share specific examples of how you've tackled security challenges in the past.
✨Tip Number 3
Prepare for the interview by brushing up on the latest trends in operational security. Be ready to discuss how you would approach endpoint security or incident response. We want to see your thought process and how you can contribute to our mission.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you’re genuinely interested in joining our team at Crown Agents Bank.
We think you need these skills to ace Senior Operational Security Engineer
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Senior Operational Security Engineer role. Highlight your relevant experience with EDR, network security, and identity management. We want to see how your skills align with what we do at Crown Agents Bank!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're passionate about operational security and how you can contribute to our mission of transforming payments in emerging markets. Keep it engaging and personal!
Showcase Your Technical Skills:Don’t hold back on showcasing your technical skills! Mention specific tools and technologies you've worked with, like SIEM/XDR platforms or firewall management. We love seeing hands-on experience that matches our needs.
Apply Through Our Website:We encourage you to apply through our website for the best chance of getting noticed. It’s super easy, and you’ll be able to submit all your documents in one go. Plus, it helps us keep track of your application!
How to prepare for a job interview at Crown Agents Bank Ltd.
✨Know Your Security Tools
Familiarise yourself with the specific security tools mentioned in the job description, like EDR, SIEM/XDR platforms, and firewalls. Be ready to discuss your hands-on experience with these tools and how you've used them to enhance security in previous roles.
✨Understand the Regulatory Landscape
Brush up on relevant regulations such as ISO 27001 and NIST CSF. Even if you haven't worked directly in a regulated environment, showing that you understand these frameworks will demonstrate your commitment to compliance and security best practices.
✨Prepare for Scenario-Based Questions
Expect questions that ask you to solve hypothetical security incidents or challenges. Think through your past experiences and be ready to explain how you would approach threat detection, incident response, and managing access controls in real-world scenarios.
✨Showcase Your Communication Skills
As a Senior Operational Security Engineer, you'll need to communicate complex security concepts clearly. Prepare to discuss how you've documented processes or reported on security metrics in the past, and be ready to explain technical details in a way that's understandable to non-technical stakeholders.
