Join Flo Health as a SecOps Lead and Drive the Evolution of Cybersecurity in a Thriving Health Tech Company
Overview
£7000
Vilnius, Vilnius, Lithuania,
Expires at anytime
Organization Summary: Flo Health is at the forefront of digital health, providing millions with a trusted platform for health and wellbeing. As a SecOps Lead at Flo, you'll be part of a passionate team dedicated to maintaining top-notch cyber security measures, playing a critical role in safeguarding user data as the company scales.
- Enhance Flo's security operations and SIEM strategy.
- Collaborate with cloud and product security teams.
- Join the virtual Security On Call Team, ensuring 24/7 coverage.
Role Requirements:Proven experience with security operations tools and technologies.Proficiency in cloud security (AWS & GCP) and Terraform.Expertise in threat intelligence, security log ingestion, alert curation, and incident response.Excellent communication skills and a strong understanding of data protection.Familiarity with Elastic SIEM tool and supporting security audits (preferred).
Role Responsibilities:Lead the development of Flo’s security monitoring program.Ensure efficient log data collection and SIEM ingestion.Refine alerts to minimize false positives and address specific security concerns.Develop SecOps metrics and KPIs.Identify and analyze emerging threats and vulnerabilities.Collaborate with IT to implement business user and endpoint controls.Provide advice on cyber security issues to stakeholders.Generate reports for various audiences.
Joining Flo Health means taking on a pivotal role with competitive compensation starting from €7000 gross/month, within a hybrid work environment. #LI-Hybrid #LI-LM12
The SecOps Lead is an exciting new role that will drive forward the development of Flo Health’s Security Operations, to ensure the company maintains robust cyber security detection and response capabilities that scale as Flo continues to grow.
You will build on Flo’s logging and monitoring / SIEM maturation strategy, working with the VP of Security to further develop Flo’s SecOps target operating model, including tooling, processes and resources.
Collaborating closely with fantastic security colleagues in cloud and product security, you will lead and form part of the virtual (decentralized) Security On Call Team, providing 24/7 on-call coverage on a rotational basis (typically 1 week per month) responding to security alerts to keep our users’ data secure.
Your Experience
Must have:
- Hands-on experience with common security operations tools and technologies.
- Cloud security experience (AWS & GCP).
- Experience of using Terraform.
- Experience of gathering relevant threat intelligence and producing actionable insights.
- Extensive experience of security log ingestion and alert curation.
- Incident response / incident management expertise.
- Understanding and respect for the need for strong security and data protection measures and robust governance required to protect sensitive data.
- Excellent collaboration and communication skills.
Nice to have:
- Experience of the Elastic SIEM tool.
- Experience of supporting security audits.
- Experience of identifying and analyzing security risks.
What you'll be doing
You'll be responsible for:
- Leading the design and development of Flo’s security monitoring programme.
- Working with critical system owners and cloud security engineers to ensure required log data is collected and ingested into the SIEM (Elastic).
- Tuning and curating alerts to reduce false positives, addressing specific use cases.
- Developing appropriate Secops telemetry and KPIs.
- Monitoring for attacks, intrusions, and unusual and unauthorized activity.
- Investigating security alerts and responding to any threats.
- Manage security incidents, including post-incident reviews.
- Using advanced analytic tools to determine emerging threat patterns and vulnerabilities.
- Gathering, curating and communicating relevant threat intelligence information.
- Working in close collaboration with the IT Team to design and implement appropriate business user/ endpoint controls.
- Supporting and advising business stakeholders in relation to cyber security issues.
- Generating reports for both technical and non-technical staff and stakeholders.
You'll be targeted on:
- Close SIEM coverage gaps.
- Improve incident detection and response KPIs.
- Reduce security alert false positives.
- Develop Flo’s SecOps operating model and roadmap.
The salary range for this role starts from €7000 gross/month. #LI-Hybrid #LI-LM12