Security Engineer (SOC)

Company Description

We’re ASOS, the online retailer for fashion lovers all around the world.

We exist to give our customers the confidence to be whoever they want to be, and that goes for our people too. At ASOS, you’re free to be your true self without judgement, and channel your creativity into a platform used by millions.

But how are we showing up? We’re proud members of Inclusive Companies, are Disability Confident Committed and have signed the Business in the Community Race at Work Charter and we placed 8th in the Inclusive Top 50 Companies Employer list.

Everyone needs some help showing up as their best self. Let our Talent team know if you need any adjustments throughout the process in whatever way works best for you.

Job Description

We're looking to hire a Security Operations Engineer to enhance our security operations and ensure robust protection against sophisticated threats. This role will report into the SOC and IR Manager, this role is crucial for maintaining our Security Operations as a high-performing and resilient. You will be refining our SOC capabilities by monitoring network traffic, automating processes, analysing security incidents, manage security tools, and providing expertise to Security Specialists and SOC analysts. As the SOC Engineer you will collaborate with cross-functional teams to build defences, respond to incidents, and design strategies for robust cybersecurity posture. You will enhance SOC capabilities with cutting-edge technologies and automation tools. Collaborating with industry experts in cloud security, fraud prevention, and data analytics, and cloud-native security technologies.

The role will involve the following:

• Security Engineering & Automation: Drive improvements in SOC workflows, automating enrichment processes using automation tools, and developing playbooks for more efficient alert handling. Oversee the deployment, configuration, and tuning of SOC related security tools to enhance detection accuracy, reduce false positives, and manage end-to-end EDR operations.
• Cloud Security Monitoring: Analyse and manage security logs
• Security Monitoring & Threat Detection: Continuously monitor security alerts, events, and IoCs across all platforms. You’ll build and deploy queries and scripts, and create dashboards and workflows to enhance visibility and reporting
• Proactive Threat Hunting: Develop and implement threat hunting procedures to proactively identify potential risks and vulnerabilities before they escalate.
• Incident Response: Coordinate with the SOC team and cross-functional teams during the incident response lifecycle, focusing on containment, eradication, recovery, and post-incident analysis.

Qualifications

About you:

• Experience in SOC or incident response roles, with hands-on experience in threat detection and mitigation.
• Technical Skills: Strong capability in threat detection, incident response, and analysis of complex attack patterns, with a focus on the Cloud environment. Skilled in alerts, and dashboards.
• Scripting & Automation: Knowledge of scripting languages
• SOAR: Hands-on experience managing SOAR platforms
• EDR Expertise: Hands-on experience managing EDR tools, including end-to-end operations from deployment and configuration to analysis and response.

Additional Information

BeneFITS’

• Employee discount (hello ASOS discount!)
• ASOS Develops (personal development opportunities across the business)
• Employee sample sales
• Access to a huge range of LinkedIn learning materials
• 25 days paid annual leave + an extra celebration day for a special moment
• Discretionary bonus scheme
• Private medical care scheme
• Flexible benefits allowance - which you can choose to take as extra cash, or use towards other benefits