Job description

Job description

  • Department:
    Technology - IT Operations & Service
  • Job Type:
    Full Time
  • Number of Hours:
  • Contract Type:
Share this page
Share with linkedin
Share with facebook
Share with twitter
Share with email

Security Operations Engineer (16384)

About IT OPERATIONS at Holland & Barrett
  • The IT Operations function provides the foundation of IT services to Holland and Barrett customers by ensuring products are delivered to customers on time, and customers can access new services.
  • Key services have been enhanced by providing resilient infrastructure in the cloud, improving availability to reduce impact to trade.
  • The IT Operations team are investing heavily in building internal capabilities from a new Service Desk and Proactive Monitoring teams to expanding its Delivery capabilities in delivering million pounds infrastructure and Back Office projects.
  • Tech teams are undergoing a diverse range of technical training programme aimed at providing colleagues opportunity to develop their technical and leadership skills and support their career aspirations.
The Role

The scope of the role covers security incident response and investigations, security monitoring, threat intelligence and SOC platform engineering and support.

The Sec Ops Engineer will:
• Protect H&B systems and data by promptly responding to security threats and incidents, acting individually, and as part of a team to resolve issues
• Proactively hunt for threats and enacting detection, response, and containment measures while supporting recovery efforts
• Act as subject matter expert to provide insight and guidance to wider colleagues engaging in prevention measures
• Analyse cyber security incidents to solve issues and improve incident handling procedures
• Receive Tier 2/3 incident escalations from network operations or managed security service providers and assist with real-time, continuous (24x7) security event monitoring, response, and reporting
• Proactively coordinate with various H&B departments during a security incident for example legal, DPO, security, networks, engineering, and others
• Conduct research regarding the latest methods, tools, and trends in digital forensics analysis
• Create thorough root cause analysis (RCA) reports and documentation of all incidents and procedures, and making recommendations
• Present findings to team and the leadership team on a routine basis
• Ensure setup and integration of new security services within the SOC as the scope of the service increases and matures
• Ensure that new security intelligence and monitoring feeds are integrated into the

The Person

• 2 years' experience in Information and Cyber Security
• Excellent SIEM tooling knowledge including technologies such as Exabeam, Sentinel, GuardDuty, DarkTrace, Splunk etc.
• Experience in end-to-end information security incident management and mitigating and addressing threat vectors including Advanced Persistent Threat (APTs), Distributed Denial of Service (DDoS), Phishing, Malicious Payloads, Malware, etc.
• Experience with Intrusion Detection Systems (IDS), Intrusion Prevention Systems (IPS), Web Applications, Firewalls, Firewall logs, systems logs, web logs, other application, and event logs
• Experience with technologies, tools, and process controls to minimise risk and data exposure
• Solid experience of working in Cloud environments such as AWS, Azure, M365 and SaaS applications
• Experience with building threat-based Use Cases using frameworks such as MITRE ATT&CK
• Experience training and developing teams
• SANS SEC401 certification or equivalent a plus
• Log carving and log investigation
• Experience securing Kubernetes within a production environment
• Solid understanding of ISO 27001, Cyber Essentials/Essentials Plus, GDPR and other information security-related regulatory and compliance standards
• Bachelor's degree in computer science, Engineering, or related field
• Information Security and/or Information Technology industry certification (CISSP, CISA, CISM, GIAC or equivalent)

Other Skills
• Understanding of security threats, attack scenarios, intrusion detection and incident management
• Strong facilitation, negotiation, and conflict resolution skills
• Ability to deal with ambiguity and to keep a cool head when dealing with crisis or stressful situations
• Strong analytical skills


💸 Technology Incentive Scheme - we offer different bonus schemes for all grades in Technology, starting at 10%.

📚 Learning and Development opportunity with Holland & Barrett is a great base for career development long term.

🤝 Career progression

🔝 Pension company contribution 

✈️ Your wellbeing is paramount so you can get away and take 28 or 33 Days Holiday per year. 

💷 Refer and Earn Scheme - as we're growing you can earn money by referring people to join us from your network.

👜 Epic Extras gives you access to exclusive benefits, free advice and savings from a range of retailers and providers.

💰 Stay healthy with Discounted Products - from day one you'll get a 25% discount (on top of other promotions) when you shop at H&B on anything that you buy. 

🙋🏽 We all need a little help sometimes, so we offer Free 24/7 Confidential Advice & Colleague Welfare.

🧠 Mental Health First Aiders - we have lots of qualified Mental Health First Aiders because its all about your health & wellbeing.

👑 We have colleague Reward and Recognition Schemes, so your hard work and loyalty won't go unnoticed.

👏 And many more!

The Company

Holland & Barrett is one of the nation's most loved and trusted brands, known for offering quality health food, vitamins and supplements all sold by highly trained and qualified advisors.

Bucking the current trend of high street retailers, we forecast significant growth and expansion plans in the coming years, with considerable investment going into all areas of the business. We certainly embrace change and drive speed in everything we do. Every day presents a different challenge, but every day is also filled with fun, teamwork and passion to succeed and surpass every expectation.

Join us and see how far you can go…

Vacancy Alerts
Create an alert subscription based on this vacancy