Ppro4mo ago

Senior Security Operations Engineer

London · (london) · LondonPermanent - full timesenior

SecuritySecurity Operations EngineerCybersecurity

0 views0 saves0 applied

Apply Now

Quick Summary

Overview

At PPRO, our mission is to simplify access to local payment methods and our vision is to enable the sale of goods and services to anyone in the world using their preferred way to pay.

Technical Tools

SecuritySecurity Operations EngineerCybersecurity

At PPRO, our mission is to simplify access to local payment methods and our vision is to enable the sale of goods and services to anyone in the world using their preferred way to pay. We empower partners such as Ant Group, PayPal and Stripe to access new markets, connect with more customers, and accelerate their growth.

Our strength lies in our diverse global team with 50+ nationalities and 10+ international locations- all united around one goal – to deliver the best possible products and services to our partners and customers. While our company mission is to keep innovating global commerce, our internal mission is to #chooseaction, #beopen, #thinkcustomer, #gofurther and #wintogether

The Purpose:

PPRO is seeking a highly motivated and experienced Senior Security Operations Engineer to join our dynamic and growing security team. This role is critical to defending PPRO against a constantly evolving threat landscape. You’ll be responsible for detecting, analyzing and responding to security alerts, with a primary focus on developing and refining our detection capabilities through Security Incident & Event Management (SIEM) rule creation. You’ll be proactive, hands-on and self-driven, with a strong background in operational security and a passion for tackling complex challenges using cutting edge technologies. This role has scope and freedom to get involved in lots of different areas surrounding security operations in a dynamic, cloud-native environment.

Threat Detection and SIEM Management:

Design, develop and implement custom detection rules, alerts and dashboards within our SIEM platform to identify emerging threats across both end-user and production environments

Continuously tune and optimize existing rules to improve detection accuracy and reduce false positives

Proactively hunt for threats within our environment by analyzing logs and security data from various sources

Incident Response:

Conduct thorough investigations of security alerts generated by endpoint detection & response systems, SIEM and cloud platforms

Manage the full lifecycle of security events from initial detection and triage to containment, eradication and post-incident analysis

Clearly document and report on lessons learned from security events and incidents, design and implement recommendations for improving our security posture

Operational Security:

Monitor, maintain and enhance our security tooling, ensuring optimal performance and coverage

Collaborate with Technology teams to integrate security monitoring and alerting into the CI/CD pipeline

Contribute to the development and improvement of security operations procedures and playbooks

Innovate, experiment, enhance Security Operations by making use of cloud-native tools, AI and automation to help to build a best of breed SOC

Ownership:

Must be highly capable of working autonomously and be a self starter, willing to take ownership and responsibility of all tasks. Evaluate and recommend new security technologies and tools to address both known and unknown gaps in our defenses.

Strong hands-on experience with SIEM platforms, including the creation and tuning of complex detection rules

Demonstrable experience with Endpoint Detection and Response (EDR) tools

Solid understanding of cloud security principles, CI/CD processes and DevSecOps environments

In-depth knowledge of incident response methodologies and best practices

A proactive mindset with the ability to take ownership of tasks and projects and drive them to completion

Excellent analytical and problem-solving skills, with a keen eye for detail

Scripting or programming skills (e.g., Python, PowerShell) for automation and analysis

Empathetic, thoughtful and business-focused approach to understand how Security controls impact other business functions and customers

An understanding of regulatory compliance frameworks such as PCI DSS, DORA, SOC2, GDPR is a bonus