Operational Security Lead in London

We’re looking for an Operational Security Lead to enhance the IT security of the organisation, reduce technical debt and ensure the third-party solutions we use and buy are implemented securely. This is a genuine opportunity to have a voice and be part of shaping decisions and direction in this exciting space. You will join the Information Security Team and will be helping us to make changes that contribute to the quality of our systems and user environments whether on-prem, in data centres or in the cloud.

You’re interested in building capabilities that improve security posture through hands-on configuration, system administration and enjoy the challenge of working with a variety of technology environments and teams. We support a hybrid working approach.

• Define end user security experience
• Delivering projects with product, development and support teams
• Develop the effectiveness of detection and response management
• Triage, track and follow security issues to completion
• Lead team incident management procedures
• Develop security automation response for anomalous events and changes in risk
• Work with 3rd party vendors/partners on security engagements
• Transforming system review/config audit into continual improvement cycles
• Conducting end point, server and device config reviews
• Be a SME resource for operational security control advice & threat modelling for the business

Essential knowledge:

• Solid understanding of cybersecurity concepts, including threats, vulnerabilities, security operations, encryption, boundary defence, authentication and risk management.
• IAM & Directory Management engineering (Azure/Entra/ M365)
• Detection & Response platforms
• Securing mobile, server and desktop operating systems
• Security Architecture principles
• Network Security engineering
• Securing AWS workloads
• Microsoft 365 E5 security & compliance capabilities, including Microsoft Defender XDR (Defender for Endpoint/Identity/Office 365/Cloud Apps) and Microsoft Purview (Information Protection, DLP, eDiscovery, Insider Risk)
• Operational familiarity with authentication, authorisation and non-repudiation techniques
• Operationalizing alert and intelligence data into actionable response
• Excellent communication and documentation skills
• Strong analytical and problem-solving skills
• Windows & Linux System administration

Desirable Knowledge:

• Working across hybrid cloud environments
• CIS hardening & benchmark standards
• Cloud and AI engineering capabilities
• One or more of the following would be advantageous: KQL, Python, linux shell
• Data regulations as they relate to IT systems
• Data Visualisation skills
• Secure enablement and governance of Microsoft Copilot and GenAI (Copilot for Security, Microsoft 365 Copilot).
• Execution of change/project mgmt. across teams in & outside of IT
• Working with Container and orchestration tools
• Working with DevOps teams

What you’ll get in return:

• A culture that supports true collaboration whilst embracing remote working with a company wide hybrid working week.
• Approach to personal development where we encourage individuals to grow and share what they’ve learned.
• Social events, both within the department and across the company
• Generous holiday allowance with the opportunity to buy back additional holiday.
• A day off to celebrate your birthday
• Giving back is part of our culture with this in mind Mintel gives each employee 2 days per year to give to a worthwhile cause.