Hybrid WorkingWe have a Hybrid approach to working here at Starling - our preference is that you're located within a commutable distance of place of work in Toronto, so that we're able to interact and collaborate in person.
About the RoleTo support our growth, we are looking for SOC Analysts to join our growing cyber security function. This role will be supporting our 24/7 operational capabilities by providing coverage in working hours from Sydney and Toronto alongside our UK colleagues.
As a member of the Starling Group's SOC team, you will be working with the industry's brightest SecOps professionals to protect Starling Group's customers, assets, and systems using the latest technologies.
Incident Triage, Response, and Investigations based on Alerts received from multiple sources which include:
- Cloud Infrastructure/Security.
- Endpoint Detection and Response.
- Perimeter detection tooling.
Investigating and responding to security alerts raised by Users.
Enhancing and creating analytic triggers to enhance alert efficacy.
Continuous development of incident handling and readiness processes.
Proactive threat hunting based on threat intelligence.
Documentation of incidents and investigations.
RequirementsAbout your SkillsWe're open-minded when it comes to hiring and we care more about aptitude and attitude than specific experience or qualifications. Below is an overview:
- 3+ years experience in an in-house SOC role and team
- Understanding of AWS Security Solutions (or other Public Cloud Solutions)
- Analysis and Incident Response experience with Cloud systems (GCP, AWS)
- Experience working and supporting analytics/SIEM platforms.
- Experience supporting and conducting Incident Response engagements.
- Experience in endpoint based investigations.
- Experience in cloud based investigations.
- Experience with Incident Command and conducting Tabletop Exercises.
- Excellent communication skills (both verbal and written), ability to communicate technical concepts to both technical and non-technical audiences.
- Demonstrated teamwork and collaboration skills as part of a multi-functional team
- Time management, problem-solving and interpersonal skills.
- Eagerness to learn and apply knowledge to new security challenges.
- Willingness to share knowledge with the team and mentor colleagues.
- A high level understanding of mobile, network and operating system security controls.
Preferred- 3+ years experience in a cyber incident response and digital forensics function
- Experience in forensics: cloud (GCP, AWS); endpoint/server (Windows, MacOS, Linux); and/or network.
- Any experience of programming in Python, Go and/or Java.
- A Cyber/Information Security related degree and/or relevant cyber security qualification(s) would be desired but not required
- Understanding of malware analysis techniques
Interview ProcessInterviewing is a two way process and we want you to have the time and opportunity to get to know us, as much as we are getting to know you! Our interviews are conversational and we want to get the best from you, so come with questions and be curious. In general you can expect the below, following a chat with one of our Talent Team:
- First Interview: 45 minutes
- Technical Interview: 90 minutes
- Final Interview: 30 minutes
Please NoteWe require our successful candidates to pass background checks (including but not limited to employment references, fraud checks, financial probity, social media, and criminal history).
We are unable to provide work permit or visa sponsorship for any role in Canada at this moment in time.
Benefits• A discretionary benefits stipend, payable on a monthly basis, is provided
• 20 days annual leave plus public holidays
You may be put off applying for a role because you don't tick every box. Forget that! While we can't accommodate every flexible working request, we're always open to discussion. So, if you're excited about working with us, but aren't sure if you're 100% there yet, get in touch anyway. We're on a mission to radically reshape banking - and that starts with our brilliant team. Whatever came before, we're proud to bring together people of all backgrounds and experiences who love working together to solve problems.
