Skip to main content
a office with a plant in a pot

Security Operations Engineer - Flutter UK&I

Apply Now


What are you going to do:

The Security Operations Engineer is multi-disciplinary role and a member of the UK&I Divisional Security team. The SecOps Engineering group has responsibilities across a number of key areas and each engineer is assigned to an area of primary, secondary and in some cases tertiary focus, that best utilizes their skillset and is attuned to their career path.

Working within the Security Operations, vulnerability, incident response team and multiple platform experts, that will help ensure the delivery of effective & integrated 24x7 security operation services.

Your Responsibilities:

  • Design and implement Splunk Use-Cases/Correlation-Searches in Splunk ES to cover SOC 24/7 monitoring needs & on-the spot requests
  • Configure, investigate and troubleshoot technical & functional issues with Splunk & SOAR solutions
  • Build scripts & custom automations to integrate various security solutions into SOC monitoring scope
  • Manage log onboarding process in Splunk
  • Design and maintain the Splunk RBA implementation
  • Orchestrate and automat Security Processes & Procedures using a SOAR Solution
  • Actively develop, coach and mentor security tribe colleagues through the mutual sharing of knowledge and experience, training and on the job development.
  • Contribute to the continuous improvement of the Security Operations framework ensuring it stays aligned with the ever-changing technology and threat landscape.

Key Strengths:

  • In-depth experience of incident management and technical incident investigation.
  • Good knowledge of Splunk Enterprise Security (Splunk SPL & general SplunkES administration).
  • Knowledge of automation & orchestration solutions (focus on PaloAlto Cortex XSOAR)
  • Knowledge of the Mitre Att&ck Matrix.
  • Programming/Scripting knowledge & experience (focus on Python).
  • Experience of working in a SOC.
  • Solid computer networking and network security analysis.
  • Good understanding of enterprise/corporate IT operations and standard enterprise security controls.
  • Administration skills across one-or-more operating systems and its respective scripting language.
  • Good understanding of security event logging and its use in event analysis.
  • Positive attitude and key interests in Blue Teaming
  • Good knowledge of security devices/solutions (EDR/AV, IDS/IPS).
  • Excellent engineering mindset
  • Basic understating of CI /CD pipeline, Jenkins and Ansible technologies
  • Disciplined & logical thinker, able to solve relative complex issues sometimes under pressure
  • Can work with a minimal supervision and as part of a team.
  • Consistently delivers high quality results by agreed deadlines.
  • Demonstrates a positive, collaborative attitude.
  • Can perform analysis of potential risks to security and recommend solutions.
  • Passionate about Technology & Security

Qualification, Experience, Certifications:

  • Splunk or any other SIEM solutions, hands on experience are a big plus
  • Hands on experience with XSOAR or any other Security Orchestration, Automation and Response Solution
  • Previous development experience with Python
  • Understanding of various IT processes and technologies (cloud, virtualization, databases, networking, software development, logging)
  • Good understanding of security processes and the purpose of SecOps Monitoring and Incident response
  • Able to translate processes/procedures into automated flows
  • Good level of spoken and written English (B2, C1) (fluency in English is a must)

What you can expect:

  • An open and collaborative team who value and respect each other.
  • An autonomous environment where you are empowered to make decisions.
  • 25 days of annual leave.
  • Share save scheme and „Flexible Benefits” of your choice.
  • Private health insurance (includes dental insurance and health assessments);
  • Excellent development opportunities including online and in-house training, access to thousands of courses online through ‘Udemy'.

Ways of working:

Flexible working is our way of working! We're a diverse workforce and therefore a 'one size fits all' approach isn't necessarily best. Whatever your personal needs may be, let's have a chat and see how we can accommodate them;We thank all applicants for their interest, however only the suitable candidates will be contacted for an interview. By submitting your application online, you agree that: your details will be used to progress your application for employment. If your application is successful, your details will be used to administer your personnel record. If your application is unsuccessful, we will retain your details for a period no longer than two years, in order to consider you for prospective Paddy Power Betfair role.

a hallway with windows

Join our talent community

Be the first to know about our latest vacancies

Sign up