Senior Security Specialist

We're looking for a Senior Security Specialist to join us in Reading  

Reporting into our Senior CERT Manager you will help continue to mature the way in which the organisation manages and handle the operational security incidents of our ever evolving business.? The person will provide a passion and deep technical understanding of how to investigate and handle cyber incidents.
You and the team will support the entire portfolio of Liberty Global across our global network to detect, respond, remediate and recover from cyber-attacks but also proactively defend against them through Intelligence Led Threat Hunting  

What will you be doing? 

The role will encompass being a Security Subject Matter Expert (SME), and will lead, guide, and inspire the team of security analysts with a view to develop these skills amongst the team whilst also acting as a technical escalation point.
As such, the role requires a deep technical understanding of intrusion detection and analysis, incident response, vulnerability management, and infrastructure 


Driving forward the technical skill set of the team by developing threat hunting, adversary emulation, leading edge threat mitigation methodologies and security use cases. 


Understand complex IT environments with broad range of knowledge around networking, system administration, database platforms and develop defensive methodologies around likely methods of attack 


Experience in analysing a wide range of log sources, data normalization and querying of data using analytical platforms (e.g.
Splunk, Hadoop, Elastic, Kibana, MDE and MCAS) 



Identification of malware types, infection methods, providence and objective of the malware.
This will also require extraction of IoC's and TTP's 


To assist and develop investigations and respond to security incidents 


A self-starter is required for this role and the successful applicant will be able to demonstrate taking ownership of and responsibility for resolving issues 


They will also be able to work as part of a wider team, guide a team, and be confident in making decisions 


The role will be predominantly Mon-Fri office hours, although some out of hours support is envisaged 

We tend to look for people with:  

Demonstrated experience of managing, investigating and responding to cyber incidents. 


Deep knowledge and understanding of co-ordinating cross-organisational responses to security incidents. 


In depth knowledge of technical security systems, security architecture, security technology, and associated penetration testing and Security Event Management methodologies. 



In-depth knowledge of Splunk queries, dash boarding, Use case creation and Enterprise Security. 


In depth knowledge of Cyber Security Methodologies including the Cyber Kill Chain, Mitre ATT&CK Framework, NIST, MITRE Def3nd. 


Ability to identify developing patterns and trends in data and be able to provide incident root cause analysis, with a view to identifying and influencing future prevention by maintaining the Incident knowledge base. 


Experience of other security technologies & defences such as Firewalls, Snort, Bro, Intrusion Detection System (IDS) monitoring and custom rule creation (YARA), TCP/IP Networking, WireShark, TCPDump, Netflow analysis. 


In depth understanding of IT systems and technologies (e.g.
Linux and Windows operating systems, E-Mail, Proxies, Endpoint Protection). 



Working knowledge of SIEM architecture, XDR and Vulnerability Management, Incident Response tooling such as Hive. 


Sandboxing technologies such as Cuckoo and Malware reverse engineering IE IDA Pro, ole debugger (both static and dynamic analysis required), and a good understanding of REMnux. 


Understanding DFIR toolsets (e.g.
Volatility, SIFT Workstation) memory and file system analysis, and attack vectors. 


Knowledge of Data Protection (GDPR) and its role within a business.
Technical & Management reporting to demonstrate effectiveness and value of the teams work.
 

Desirable: 

?Global Information Assurance Certifications (GIAC) e.g.
Certified Incident Handler (GCIH), Certified Intrusion Analyst (GCIA), Reverse Engineering Malware (GREM) would be an advantage. 

What's in it for you? 

Competitive salary + Bonus 



25 days annual leave with the option to purchase 5 more 


Access to wellbeing and mental health benefits such as the Calm app, personal medical, critical illness cover and dental insurance 


Matched pension contribution up to 10% 


Access to our car benefit scheme 


Access to our online learning platform to continue to develop and grow your career with us 



The chance to join an innovative, fast-paced and passionate team 

Who we are: We're building Tomorrow's Connections Today, bringing people together through the power of our technology. Liberty Global is a world leader in converged broadband, video and mobile communications and an active investor in cutting-edge infrastructure, content and technology ventures. With our investments in fibre-based and 5G networks we play a vital role in society, currently providing over 85 million fixed and mobile connections and rolling out the next generation of products and services, while readying our networks for 10 Gbps and beyond. We're creating national champions, combining the best broadband and mobile networks under brands such as Virgin Media-02 in the UK, VodafoneZiggo in The Netherlands, Telenet in Belgium, Sunrise in Switzerland, Virgin Media in Ireland and UPC in Slovakia. Liberty Global Ventures, our global investment arm, has a portfolio of more than 75 companies and funds across content, technology and infrastructure, including strategic stakes in ITV, Univision, Plume, Lionsgate and the Formula E racing series. Our scale enables us to transfer knowledge and expertise across our operations and investments, creating a dynamic family of brands united in the pursuit of innovation and excellence. And we're prioritising diversity, equity and inclusion in our workplace and communities, while reducing our impact on the environment.
We are using technology as a force for good; for our people, our partners and the planet. Liberty Global is an equal opportunity employer.
We embrace diversity and are committed to creating an inclusive environment for our people.
We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process.
We're 100% committed to having a workforce that represents every part of our society.
So we're keen to hear from candidates of all background and circumstances.? 
Additional information:Employment type: Full-time