Summary: The Senior Security Operations Specialist role at Tesco Bank, facilitated by AMS, focuses on enhancing cybersecurity through threat hunting, incident response, and security solution development. This position requires hands-on experience with EDR and SIEM tools to proactively identify and mitigate security threats. The role is offered on a 6-month contract basis, with work primarily based in Edinburgh as needed. The ideal candidate will collaborate with cross-functional teams to strengthen security operations and improve detection capabilities.

Key Responsibilities:

• Conduct threat hunting and incident response using Sentinel, Defender, and CrowdStrike.
• Generate attack hypotheses and develop use cases to improve detection capabilities.
• Collaborate with cross-functional teams to design and implement robust security solutions.
• Action EDR and SIEM alerts, analyse threats, and translate findings into actionable security use cases.
• Work closely with the wider security team to ensure continuous improvement of security operations.
• Assist in the evaluation, deployment, and tuning of security tools and technologies.

Key Skills:

• Proven experience in threat hunting and incident response.
• Expertise with EDR tools such as Sentinel, Defender, and CrowdStrike.
• Strong knowledge of SIEM platforms, event correlation, and log analysis.
• Experience in developing security use cases and automation for detection and response.
• Familiarity with scripting languages (e.g., Python, PowerShell) for automation is a plus.
• Strong analytical and problem-solving skills.
• Excellent collaboration and communication abilities.

Salary (Rate): undetermined

City: Edinburgh

Country: UK

Working Arrangements: undetermined

IR35 Status: inside IR35

Seniority Level: Senior

Industry: IT