Giacom are the only provider of Comms, Cloud, Hardware and Billing all through one platform.
Our platform connects technology resellers and service providers to the best IT, Comms and Cloud products and services so they can create brilliant technology solutions for UK businesses.
The Security Operations (SecOps) Engineer will play a key role in maintaining and improving the organisation's overall security posture and operational security capability, acting as the bridge between internal stakeholders, technology teams and outsourced security service providers.
This role is primarily a Security Operations and Engineering position, with responsibility for coordinating outsourced SOC services and driving security posture improvement.
What you'll be doing
Act as the primary technical conduit and liaison between the organisation and our outsourced third-party SOC vendor.
Triage, analyse and prioritise alerts, incidents, escalations, and investigations - validating severity, business impact, and regulatory implications of incidents
Co-ordinate incident management and response activities aligned with defined policies, standards, and framework requirements by being the internal response facilitator and co-ordinator for containment, eradication, and recovery actions for security incidents escalated by the SOC
Actively assist and work closely with the outsourced SOC provider to:
Investigate root causes of security issues and design effective remediation solutions
Monitor and configure security tools - global EDR/XDR policies, blocklists, and automated containment rules including SIEM, EDR and respond to threat detection alerts.
Maintain and enhance security monitoring capabilities through effective integrations and optimisation of security tooling, ensure effective data collection and eliminate visibility blind spots.
Work closely with outsourced SOC vendor and internal engineering teams to implement automation workflows for routine SOC tasks such as alert enrichments, notifications, and data gathering, providing technical support and testing.
Design, configure, and implement security improvement initiatives and projects to enhance the organisation’s overall security posture.
Collaborate with Corporate IT Service Desk to maintain governance over IT operations, ensuring technical controls across endpoints, enterprise solutions, and identity services are hardened, continuously monitored, and managed in accordance with Secure by Default principles to enable resilient and secure day-to-day operations.
Skills, Qualifications, and Experience
Previous hands-on experience in cybersecurity operations or security engineering roles.
Experience of security monitoring, threat detection, incident response, and threat hunting methodologies.
Strong working knowledge of endpoint security, identity and access management, authentication controls, privileged access management, and security hardening standards incl. Privileged Access Management (PAM/PIM) principles and enterprise Endpoint Detection & Response (EDR/XDR) tooling.
Experience managing security tooling such as Microsoft Defender XDR, Sentinel, CrowdStrike, Splunk, QRadar, SentinelOne or similar enterprise-grade SIEM/XDR platforms.
Direct experience securing Microsoft 365 tenants and standard corporate SaaS environments.
Proven experience interfacing with, tuning, or triaging escalations from a third-party managed SOC or SIEM platform would also be desirable.
What's in it for you?
Hybrid working (3 days per week in our Hessle or Prudhoe office, 2 remote)
Investment in your future career with a variety of learning and development opportunities.
No dress code - embrace the freedom to bring your whole self to work.
25 days annual leave, plus bank holidays. You'll even get your birthday off, too!
A pension plan for your future.
Complimentary refreshments in all our offices.
For a comprehensive list of all our benefits, click here.
Diversity and equality lie at the heart of our values. As an equal opportunities and disability-confident employer, we encourage applications from all eligible candidates, regardless of their backgrounds. We firmly believe that diversity enriches and strengthens our team with a variety of perspectives that drives innovation.