At a Glance
- Tasks: Identify and respond to cyber security incidents while improving defensive capabilities.
- Company: Join the London Stock Exchange Group's Global Security Operations team.
- Benefits: Competitive salary, professional development, and a dynamic work environment.
- Other info: Fast-paced environment with opportunities for growth and learning.
- Why this job: Make a real impact in cyber security at a leading financial institution.
- Qualifications: Experience with SIEM tools, strong technical skills, and knowledge of attack techniques.
The predicted salary is between 60000 - 80000 £ per year.
Requirements
- The ideal candidate will have a solid technical background, with a firm understanding of modern attack techniques coupled with knowledge of the typical lifecycle of an attack.
- Preferred experience with operating or administrating a SIEM (e.g., Splunk/QRadar/LogRhythm).
- Solid understanding of networks including the TCP/IP stack, typical organisation architectures, and common protocols abused by malware.
- Experience in security event analysis & triage, incident handling and root-cause identification.
- Understanding of tools, techniques and procedures that attackers use to compromise organisations, ideally from direct experience.
- Knowledge of cyber security either academically or within corporate environments.
- Ability to work in a fast-paced and demanding environment while remaining calm.
- Strong verbal and written communication and collaboration skills.
- Security industry specific and core technical accreditations such as OSCP, GIAC, CCNA.
- Certification demonstrating SIEM operational competences.
- Proficient with one or more programming languages (e.g., Python, PowerShell, Java, C#).
What the job involves
- The London Stock Exchange Group seeks an experienced, dedicated and driven Senior Attack Monitoring Analyst to join the Global Security Operations team.
- LSEG Security Operations is a central function employing people, process and technology to continuously monitor and respond to cyber security incidents.
- This role is for a Senior Attack Monitoring Analyst for the Global Security Operations Centre (GSOC). The role is responsible for identifying and responding to cyber security incidents and improving the defensive capabilities of the GSOC.
- Triage security events and employ a methodical and coherent response to security incidents adopting playbooks where necessary.
- Competently operate a chosen SIEM (e.g., Splunk/QRadar/LogRhythm) for incident investigations, or for the development of monitoring dashboards.
- Utilise playbooks, existing knowledge and accurate online resources for guidance when responding to incidents.
- Utilise online resources for researching and collecting threat intelligence to improve the SOC’s abilities to detect cyber-attacks.
- Develop new, or improve existing run books and use cases based on investigations and knowledge of modern attacks.
- Stay up to date with current vulnerabilities, attacks, and countermeasures.
- Identify, respond and remediate cyber events generated through monitoring technologies.
Senior Attack Monitoring & Incident Response Lead employer: London Stock Exchange
The London Stock Exchange Group is an exceptional employer, offering a dynamic work environment that fosters innovation and collaboration within the Global Security Operations team. Employees benefit from continuous professional development opportunities, a strong focus on employee well-being, and the chance to work at the forefront of cyber security in a prestigious financial hub like London. With a commitment to maintaining a supportive culture, LSEG empowers its staff to excel in their roles while contributing to the safety and security of the organisation.
StudySmarter Expert Advice🤫
We think this is how you could land Senior Attack Monitoring & Incident Response Lead
✨Tip Number 1
Network with industry professionals! Attend cyber security meetups or webinars to connect with others in the field. You never know who might have a lead on your dream job!
✨Tip Number 2
Show off your skills! Create a portfolio showcasing your experience with SIEM tools and incident response. This can really set you apart from other candidates when you apply through our website.
✨Tip Number 3
Practice your interview skills! Mock interviews can help you articulate your knowledge of attack techniques and incident handling. Get comfortable discussing your experiences and how you’ve tackled challenges.
✨Tip Number 4
Stay updated on the latest trends in cyber security! Follow relevant blogs, podcasts, and news sources. Being knowledgeable about current threats will impress potential employers during interviews.
We think you need these skills to ace Senior Attack Monitoring & Incident Response Lead
Some tips for your application 🫡
Tailor Your CV:Make sure your CV reflects the skills and experiences that match the job description. Highlight your technical background, especially with SIEM tools and incident response, to show us you’re the right fit for the role.
Craft a Compelling Cover Letter:Use your cover letter to tell us why you’re passionate about cyber security and how your experience aligns with our needs. Be specific about your understanding of attack techniques and your ability to handle incidents.
Showcase Your Technical Skills:Don’t forget to mention any relevant certifications or programming languages you know. We love seeing candidates who are proactive in their learning and can demonstrate their technical competencies.
Apply Through Our Website:We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it shows us you’re keen on joining our team!
How to prepare for a job interview at London Stock Exchange
✨Know Your Tech Inside Out
Make sure you brush up on your technical knowledge, especially around SIEM tools like Splunk or QRadar. Be ready to discuss your hands-on experience with these platforms and how you've used them in past roles to handle incidents.
✨Understand the Attack Lifecycle
Familiarise yourself with modern attack techniques and the typical lifecycle of an attack. Be prepared to explain how you would identify and respond to different types of cyber security incidents based on this understanding.
✨Showcase Your Communication Skills
Since strong verbal and written communication is key, practice articulating your thoughts clearly. You might be asked to explain complex technical concepts, so think about how you can simplify these for a non-technical audience.
✨Stay Current with Cyber Trends
Keep yourself updated on the latest vulnerabilities and attack methods. Mention any recent incidents you've followed and how they could relate to the role. This shows your passion for the field and your proactive approach to learning.
