Head of SIEM and Analytics Technology

Head of SIEM and Analytics Technology
London

As a Barclays Head of SIEM and Analytics Technology you will join the Security Engineering and Technology Services at an exciting time of growth. The role will encompass the responsibility for various security services that the Chief Security Office operates, specifically around Security Events, as well as line management responsibility of a global security engineering team. This would be a great opportunity for you to showcase your technical guidance & vision with broad subject matter expertise in security technologies, specifically within the security assurance domain.

Barclays is one of the world's largest and most respected financial institutions, with 329 years of success, quality and innovation behind us. We offer careers that provide endless opportunity - helping millions of individuals and businesses thrive, and creating financial and digital solutions that the world now takes for granted.

Hybrid Working
We are currently operating in a hybrid working environment, meaning that many colleagues spend part of their working hours at home and part in the office, depending on the nature of the role they are in. Please discuss the detail of the working pattern options for the role with the hiring manager.

What will you be doing?
• Lead on the design, development, and delivery of product roadmaps to support the evolution of core security services, aligning deliveries to Barclays strategy
• Responsibility for all development, monitoring and stability of the SIEM platform as well as related UBA and analytics platforms
• Designing and developing integration and automation solutions to extend the capability of the platforms.
• Gathering use-case requirements and developing solutions for the cyber threat detection teams
• Engagement with key stakeholders and Cyber Operations to define business requirements and solution design including system functional design
• Serving as the lead SIEM Engineer while mentoring and developing team members across various Barclays site globally
• Managing client expectations and demands proactively, maintaining good client relationships, working closely with the Project/Programme Manager
• Ensuring that all activities and duties are carried out in full compliance with regulatory requirements, Barclays Operational Risk Framework and internal Barclays Policies

What we re looking for:
• Supporting and have experience in roles of security technology operations at enterprise scale
• Knowledge of data integration products/tools in the context of security logging, data models, enrichment and automation
• Familiarity of security network architectures e.g. Firewalls, DMZ, proxies, DNS, web and mail servers, and the principles of networking
• Delivery of successful IT change agendas, at scale and with multi-million-pound budget and ability to think architecturally at big picture implementation
• Strong Linux/UNIX administration skills

Skills that will help you in the role:
• Experience with a major SIEM platform (like Splunk ES) as well as SOAR or similar automation/orchestration technologies
• Exposure to cloud technologies, AWS, Azure and SaaS based security solutions
• Proficient in development and maintenance in a high-level programming language (e.g. Python) and a scripting language (e.g. BASH), or more
• Understanding of the MITRE ATT&CK framework

Where you will be working
In the heart of Canary Wharf, our headquarters at Churchill Place boasts onsite amenities such as; a gym, staff restaurant and deli bar, and is easily accessible by tube and bus links. With a population of around 5000 staff the atmosphere is second to none with a real buzz being created around the offices within.