.**Senior Security Operations Analyst**Malaga or LondonFlexible HybridEbury is a hyper-growth FinTech firm, named in 2021 as one of the top 15 European Fintechs to work for by Glassdoor and AltFi. We offer a range of products including FX risk management, trade finance, currency accounts,international payments and API integration.Ebury is looking to add a full-time Senior Security Operations Analyst to join our Security Operations team.**The role****Responsibilities include**Assisting on escalations of Security Incidents/alerts management and reporting through Ebury's SIEM tool,including:- Mail headers analysis.- Antivirus / EDR alerts investigation.- Intrusion Detection Systems alerts investigations for Desktop and Cloud environments.- Advanced Log monitoring on Cloud and desktop/local networks environments- Assisting on Employees security concerns- Advanced reportingSupporting Security Operations tasks, including:- Assisting with access policies procedures in accordance with role requirements, including UAR's (User access reviews), maintaining and developing RBAC (role based access control) and RACI matrix for different systems.- Assistance with Security Exceptions review and approval in collaboration with the Information Security Manager.- Assisting with internal phishing campaigns, as required.- Assisting with Ebury's Security Champions programme.- Provide local and remote assistance to users on security matters as required.- Collaboration on Security projects development and delivery using Agile methodologies. Good understanding of Security disciplines such as IAM (Identity and Access Management), DLP (Data Loss Prevention),Salesforce Security,for example.- Development of Threat modelling on Ebury's SIEM.- Analysis of CVE's and security assessments as part of Ebury's Vulnerability Management process.**Skills and requirements**Escalate and support security incidents in accordance with Ebury's policies and procedures. Strong knowledge in some of the following security areas (2-3 years expertise):- Security Incident Management and Response- Log Monitoring / SIEM- Cloud perimeter security (experience with AWS and GCP cloud platforms)- Desktop and physical network protection- Mails Analysis- IDS/IPS- Authentication management- Agile Tools- Vulnerability Management**Desirable knowledge and concepts**:- Good understanding of business and technical information security concepts based on ISO 27001 standard.- Data Protection principles and implementation- Experience in the Financial sector.- Experience in Cloud infrastructure (AWS and / or GCP).- Degree qualified in Information Security,IT,Engineering or any other securityCertifications/qualifications will be valued**Personal skills**- Hands-on security practitioner.- Analysis and problem solving.- Team player.- Excellent communication in English and Spanish, preferable Spanish native andFluent English, although not mandatory.- Attention to detail and accuracy #J-18808-Ljbffr
