Principal SecOps Consultant

Company Description

Telefónica Tech (part of the Telefónica Group) is a leading NextGen Tech solutions provider with a highly diversified team of over 6,000 exceptionally skilled employees and +60 nationalities.

We serve more than 5.5m customers every day in over 175 countries, with a global ecosystem of market-leading partners. Global strategic hubs: Spain, Brazil, the UK, Germany.

The Telefónica Tech UK&I hub has an end- to-end portfolio of market leading services and develops integrated technology solutions to accelerate digital transformation through: Cloud, Data & AI (Adatis), Enterprise Applications (Incremental), Workplace Services and Cyber Security & Networking.

Values: Open, Trusted and Bold

Trusted Partners:

• Microsoft: Top 3 Service Providers, Azure Expert Status, Fastrack & Inner Circle Partner
• HPE: Platinum Partner – FY23 UK&I Solution Provider of the Year
• Palo Alto & Crowdstrike: part of our NextDefense Cyber Security Portfolio
• Fortinet: Elite VIP Program – one of only 2 in the UK
• AWS: Advanced Solution & Managed Service Provider Program

Job Description

The Principal SecOps Consultant is a strategic role in our Cyber practice, providing expert guidance and support to organisations in establishing and enhancing their Security Operations capabilities. This will include areas such as SOC design, implementation, and ongoing operations, ensuring a robust cybersecurity posture.

The role will focus on delivering outstanding value, both in our offerings portfolio and across client engagements. Being the subject matter expert for in-depth security problems. 

Additionally the role is focussed on driving cross border collaboration with other business units globally, setting standards and process for homogeneous service delivery.

In this role you will:

• Work on highly strategic projects, setting a strategy that create clear business outcomes and demonstrable value, but should also serve as repeatable offerings across the client base.
• Communicate with a broad range of senior stakeholders, both internal and client facing and be responsible for defining the vision, principles and strategy for security operations.
• Improve SOC processes, including incident response, threat hunting, and vulnerability management.
• Demonstrate expert understanding of security concepts and apply them to a technical level, at the highest levels of risk and customer complexity.
• Influence and challenge clients to define clear outcomes and problem statements, from which to design appropriate solutions and opportunities.
• Effectively translate and accurately communicate security and risk implications at the most senior client levels, across technical and non-technical stakeholders.
• Manage stakeholder expectations across high risk and complexity or under constrained timescales.
• Identify new technology opportunities and design the use of these to meet customer needs and pain points.
• Provide mentorship across delivery team members, operating as an escalation expert for both internal and client facing issues.
• Designing, developing, and continuously improving vulnerability assessment, security testing, and risk analysis methods.
• Designing, developing, and continuously improving the security posture, effectiveness and efficiency of the company's products and services
• Providing developers with remediation guidance and advice
• Designing, developing, and continuously improving security operations
• Recommending and providing technical leadership for the implementation of security measures to protect information systems, networks, and data
• Be a trusted advisor to the most senior levels of client organisations.
• Work with strategic technology partners, keeping abreast of new advances and assessing their applicability to the customer landscape.
• Support strategic and complex client engagements and bid teams across the full gamut of security offerings and problems.
• Assist with the deployment and integration of security technologies within the SOC.
• Provides guidance and advice to SOC teams on areas of improvement, collaborating across teams to increase the overall security posture.
• Undertake research and development to identity improvements, integrations and opportunities for new ways of working or technology adoption.

Qualifications

• Have a deeply evolved level of technical expertise, so you can act as an exemplar across multiple stakeholder personas.
• Significant experience of the SecOps arena and related disciplines, such as CTI & DFIR.
• Fully versed in relevant frameworks and standards, inc. but not limited to Mitre ATT&CK, CIS, NIST
• Be able to influence important business decisions, both in a client and local organisational environment.
• Demonstrate a coherent approach to the identification, validation and adoption of new technologies and methodologies.
• Be able to provide expertise by solving significantly complex issues and problems.
• Monitor changes in the technical environment and assess whether risks are still at acceptable levels or whether previous decisions need to be revisited.
• Direct and influence others on best practice and policy, fostering a collegiate and collaborative approach to problem solving.
• Have a deep experience of research and development.
• Demonstrate knowledge of common security frameworks and their applicability to specific client or sectorial needs.
• Extensive experience of delivering across client engagements, collaborating with internal stakeholders to drive demonstrable value.

Additional Information

We don’t believe hiring is a tick box exercise, so if you feel that you don’t match the job description 100%, but would still be a great fit for role, please get in touch.

We don’t believe hiring is a tick box exercise, so if you feel that you don’t match the job description 100%, but would still be a great fit for role, please get in touch.