Security Operations Lead

Vollzeit
Cardiff St, London SE18, UK
vor 3 Monate

🚀 We’re on a mission to make money work for everyone.

We’re waving goodbye to the complicated and confusing ways of traditional banking. 

With our hot coral cards and get-paid-early feature, combined with financial education on social media and our award winning customer service, we have a long history of creating magical moments for our customers!

We’re not about selling products - we want to solve problems and change lives through Monzo ❤️

Hear from our team about what it's like working at Monzo ✨

 

📍London/Remote | Up to 💰£80,000 - £90,000k + Benefits | You can find out more about our approach to scaling security detection here

About Us

We’re here to make money work for everyone and we're doing things differently. For too long, banking has been obtuse, complex and opaque.

We want to change that and build a bank with everyone, for everyone. Our amazing community suggests features, test the app and give us constant feedback so we can build something everyone loves.

We're focused on solving problems, rather than selling financial products. We want to make the world a better place and change people's lives through Monzo.

About the Security Operations Team (SecOps)

This role is part of Monzo’s Security Collective which has a wide range of responsibilities, from infrastructure security to application and information security.

For this role you'll be joining the Security Operations Squad at Monzo. We are a squad dedicated to the detection and investigation of potential cybersecurity threats to Monzo and its customers, providing effective incident response where necessary.

You will be joining the wider Security Collective, a group of people passionate about making Monzo a safer place to work and bank with, to make money work for everyone.

As a bank, we are solving diverse, novel problems to ensure that our customers and data are secure, you will have the opportunity to make a direct impact on that.

One of the guiding principles of security at Monzo is that security at the expense of user experience is a last resort. We aim to move mountains in the background such that we can build world-class features without compromising on security.

Here at Monzo security is at the heart of growth plans, and we are keen to recruit a Security Operations Lead as part of our continued investment in our response capability. Reporting to the Head of Operational Security, the Security Operations Lead will act as day to day lead in the operations/response space. The successful candidate will support the continuous development and delivery of the SOC's triage and response capability, ensuring it is aligned with the needs of customers both internally and externally.

The role will suit an ambitious information security or cyber specialist, with strong team building and leadership skills who has a desire to invest their knowledge and experience into a growing function and make a measurable impact. 

What you'll be working on

You will be helping with the monitoring of information security controls within Monzo by analysing alerts received in line with our information security policies and practices and dealing with any/all security incidents.

The goal of the Security Operations squad is to minimise and control the damage resulting from cybersecurity incidents, provide practical guidance for the response, coordinate recovery activities, and work to prevent future incidents from reoccurring.

  • Lead a team of subject matter experts and analysts to ensure Information Security is managed and continuously improved in line with Monzo policy and procedure.
  • Supporting the development and progression of the security operations squad from both a technical and professional perspective.
  • Following a data driven approach support in the enhancement and continuous improvement of Monzo’s in house build detection and response systems, processes and procedures, and optimise the identification and response to threats.
  • Act as an escalation point  for Incident Response within the Security Operations squad.
  • Supporting the continuous development of the Incident Response capability and ensuring coherence with the broader response capability.
  • Assist as necessary to investigate security Incidents.
  • Support and drive the continuous improvement of Response based runbooks.
  • Support and drive the continuous development of Information Security Use Case creation, and automation playbooks. 
  • As Monzo continues to grow you will support the Head of Operational Security, define and deliver the 24/7 response capability across multiple regions.
  • Take responsibility and do the right thing for customers, colleagues and partners.

You should apply if

  • Minimum 5 years+ hands on experience in a SOC environment. 
  • Ability to lead, make decisions, problem solve and work within a highly collaborative team.
  • Can demonstrate flexibility to move between roles and teams.
  • Have a passion for the use of data and insights to make informed decisions, solve problems and input into longer term strategic decisions.
  • Self motivated with an ability to lead, inspire and drive change throughout an organisation.
  • Demonstrable experience of leading a team
  • Have an ability to be pragmatic while balancing the needs of Monzo and its customers against security threats.
  • Working knowledge of the Cyber Kill Chain and/or Incident Response Phases and adversarial tactics, techniques, procedures (TTPs) and industry standard frameworks (Mitre ATT&CK).
  • Experience with the approach a threat actor takes when attacking a network including phishing, port scanning, web application attacks, DDoS, lateral movement.
  • Knowledge of SIEM and SOAR solutions, Identity and Access Management and Data Loss Prevention tools and technologies.
  • You have experience with Security Monitoring tools.
  • You can take a pragmatic view of the application of technologies; understanding the business application of them and being able to identify a balance between the management of risk and the capability for the business to continue to operate.
  • You have in-depth experience of at least one of the following technology areas; End-User Computing/Hosting/Networks/Cloud/Development.
  • You have knowledge of commonly-accepted information security principles and practices, as well as techniques attackers use to identify vulnerabilities, gain unauthorised access, escalate privileges and access restricted information.
  • You’re excited by what we’re doing at Monzo

The Interview Process:

Our interview process consists of three main stages: 

  • 30 minute recruiter call 
  • 40 minute interview with the Hiring Manager
  • 2 hours of technical and behavioural interviews

Our average process takes around 2-3 weeks but we will always work around your availability. You will have the chance to speak to our recruitment team at various points during your process but if you do have any specific questions ahead of this please contact us on business-hiring@monzo.com

What’s in it for you:

💰 £80,000 to £90,000 ➕  stock options & benefits 

📍This role can be based in our London office, but we're also open to distributed working anywhere within the UK.

⏰ We offer flexible working hours and trust you to work enough hours to do your job well, at times that suit you and your team.

📚Learning budget of £1,000 a year for books, training courses and conferences

➕And much more, see our full list of benefits here

If you prefer to work part-time, we'll make this happen whenever we can - whether this is to help you meet other commitments or strike a great work-life balance.#LI-TK1

Equal opportunities for everyone

Diversity and inclusion are a priority for us and we’re making sure we have lots of support for all of our people to grow at Monzo. At Monzo, we’re embracing diversity by fostering an inclusive environment for all people to do the best work of their lives with us. This is integral to our mission of making money work for everyone. You can read more in our blog, 2023 Diversity and Inclusion Report and 2023 Gender Pay Gap Report.

We’re an equal opportunity employer. All applicants will be considered for employment without attention to age, ethnicity, religion, sex, sexual orientation, gender identity, family or parental status, national origin, or veteran, neurodiversity or disability status.

If you have a preferred name, please use it to apply. We don't need full or birth names at application stage 😊