About Motorway
Motorway is the UK’s fastest-growing used car marketplace – our award winning, online-only platform connects private car sellers with over 7,500 verified dealers nationwide, who compete to offer the best price. Founded in 2017, our technology makes the process refreshingly easy, earning us an 'Excellent' Trustpilot rating with over 70,000 reviews. We're not just building a platform; we're changing how people sell cars.
Backed by leading investors like Index Ventures and ICONIQ Growth, and following a successful $190 million funding round, we're on a mission to transform the used car market.
About the role
We’re looking for an experienced Senior SecOps Analyst to assist in the development, enhancement and execution of our Security Operations capability. The successful candidate will develop SOC processes, procedures and workflows for systems security monitoring and security incident response. This role will work collaboratively with other business technical and non-technical teams.
The role will involve:
Event and Alarm Triage & analysis, specifically handling escalated events.
Leading or supporting Security Incidents end to end, as part of incident response activities.
Handling escalated vulnerability, misconfiguration or threat hunting events.
Being responsible for the technical implementation of configuration or development of tools, alarms, and runbooks.
Assisting platform engineering with security best practices, responsible for liaising with appropriate teams and consulting.
Assisting software engineering with secure by design, responsible for liaising with appropriate teams and consulting.
Assisting payments with 3rd party compliance, responsible for liaising with appropriate teams and consulting.
Audit and reporting, responsible for developing and producing reports and metrics.
Oversight of the maintenance of coverage, data freshness, and noise reduction.
Organising and running tabletop, readiness, and war game exercises.
Some 3rd party management
Requirements:
Proven experience of working in a Security Operations Centre (as a Senior SOC Analyst or an experienced Junior).
Strong knowledge of the information security threat landscape, tactics, techniques, attack vectors associated with security threats.
Strong knowledge of Incident response planning and playbook design
Strong knowledge of threat detection rule design/tuning
Good technical knowledge of best practice security for networks, systems, web applications, APIs and databases.
Good knowledge and hands-on experience with common security tools such as SIEM, endpoint protection, scanners, proxies, WAF, IDS/IPS.
Some technical knowledge of AWS and GCP administration, security tooling, cloud security operations and incident response.
Some knowledge of security standards and frameworks (e.g. ISO27001, PCI DSS, MITRE ATT@CK, NIST CSF).
Some Systems forensics and investigation skills (MACOS and Windows).
Benefits
A competitive salary
BUPA health insurance
Discounted gym membership through BUPA
OnHand volunteering membership and one paid volunteering day per year
Hybrid working
Pension scheme
Motorway car leasing scheme - lease a zero-emissions electric vehicle at a significant discount
Enhanced parental leave - We offer enhanced maternity pay (26 weeks of full pay) and enhanced paternity pay (4 weeks of full pay) to eligible employees.
Workplace nursery scheme
Regular social events
Cycle to work scheme
Equal opportunities statement
We are committed to equality of opportunity for all employees. We work to provide a supportive and inclusive environment where people can maximise their full potential. We believe our workforce should reflect a variety of backgrounds, talents, perspectives and experiences. Our strong commitment to a culture of inclusion is evident through our constant focus on recruiting, developing and advancing individuals based on their skills and talents.
We welcome applications from all individuals regardless of age, disability, sex, gender reassignment, sexual orientation, pregnancy and maternity, race, religion or belief and marriage and civil partnerships.