Information Security Operations Analyst

About the Starling Group

We are Starling. We started by building a new kind of bank because we knew technology had the power to transform how people save, spend, and manage their money. Today, our ambition and our footprint have grown.

Our ecosystem encompasses our pioneering, fully licensed UK bank (Starling), our global Software-as-a-Service technology platform (Engine by Starling), alongside a growing portfolio of specialist financial and software businesses.

While our roots are in the UK, our operations are expanding globally. Though you may be based in one of our international offices (such as Sydney or Toronto), this role is critical to the entire Starling Group. The work you do will support, empower, and protect our businesses worldwide.

Our technologists are at the very heart of Starling and enjoy working in a fast-paced environment that is all about building things, creating new stuff, and leveraging disruptive technology that keeps us on the cutting edge of fintech. We operate a flat structure to enable you to make decisions regardless of your location or primary responsibilities; innovation and collaboration will be at the core of everything you do. Help is never far away in our open, borderless culture - you will find support in your team and from across the global business. We are in this together!

The way to thrive and shine within Starling is to be a self-driven individual and take full ownership of everything around you: from building, discovering, and solving complex problems, to sharing knowledge with your international colleagues to ensure all processes are efficient and productive. Our purpose across all our businesses is underpinned by five Starling values: Listen, Keep It Simple, Do The Right Thing, Own It, and Aim For Greatness.

Hybrid Working

We have a Hybrid approach to working here at Starling - our preference is that you're located within a commutable distance of place of work in Toronto, so that we're able to interact and collaborate in person.

About the Role

To support our growth, we are looking for SOC Analysts to join our growing cyber security function. This role will be supporting our 24/7 operational capabilities by providing coverage in working hours from Sydney and Toronto alongside our UK colleagues.

As a member of the Starling Group’s SOC team, you will be working with the industry's brightest SecOps professionals to protect Starling Group’s customers, assets, and systems using the latest technologies.

Incident Triage, Response, and Investigations based on Alerts received from multiple sources which include:

• Cloud Infrastructure/Security.
• Endpoint Detection and Response.
• Perimeter detection tooling.

Investigating and responding to security alerts raised by Users.

Enhancing and creating analytic triggers to enhance alert efficacy.

Continuous development of incident handling and readiness processes.

Proactive threat hunting based on threat intelligence.

Documentation of incidents and investigations.

Requirements

About your Skills

We’re open-minded when it comes to hiring and we care more about aptitude and attitude than specific experience or qualifications. Below is an overview:

• 3+ years experience in an in-house SOC role and team
• Understanding of AWS Security Solutions (or other Public Cloud Solutions)
• Analysis and Incident Response experience with Cloud systems (GCP, AWS)
• Experience working and supporting analytics/SIEM platforms.
• Experience supporting and conducting Incident Response engagements.
• Experience in endpoint based investigations.
• Experience in cloud based investigations.
• Experience with Incident Command and conducting Tabletop Exercises.
• Excellent communication skills (both verbal and written), ability to communicate technical concepts to both technical and non-technical audiences.
• Demonstrated teamwork and collaboration skills as part of a multi-functional team
• Time management, problem-solving and interpersonal skills.
• Eagerness to learn and apply knowledge to new security challenges.
• Willingness to share knowledge with the team and mentor colleagues.

• A high level understanding of mobile, network and operating system security controls.

Preferred

• 3+ years experience in a cyber incident response and digital forensics function
• Experience in forensics: cloud (GCP, AWS); endpoint/server (Windows, MacOS, Linux); and/or network.
• Any experience of programming in Python, Go and/or Java.
• A Cyber/Information Security related degree and/or relevant cyber security qualification(s) would be desired but not required
• Understanding of malware analysis techniques

Interview Process

Interviewing is a two way process and we want you to have the time and opportunity to get to know us, as much as we are getting to know you! Our interviews are conversational and we want to get the best from you, so come with questions and be curious. In general you can expect the below, following a chat with one of our Talent Team:

• First Interview: 45 minutes

• Technical Interview: 90 minutes
• Final Interview: 30 minutes

Please Note

We require our successful candidates to pass background checks (including but not limited to employment references, fraud checks, financial probity, social media, and criminal history).

Starling welcomes and encourages applications from people with disabilities. Accommodations are available on request for candidates taking part in all aspects of the selection process.

We are unable to provide work permit or visa sponsorship for any role in Canada at this moment in time.

Benefits

• A discretionary benefits stipend, payable on a monthly basis, is provided

• 20 days annual leave plus public holidays

You may be put off applying for a role because you don't tick every box. Forget that! While we can’t accommodate every flexible working request, we're always open to discussion. So, if you're excited about working with us, but aren’t sure if you're 100% there yet, get in touch anyway. We’re on a mission to radically reshape banking – and that starts with our brilliant team. Whatever came before, we’re proud to bring together people of all backgrounds and experiences who love working together to solve problems.

Starling is an equal opportunity employer, and we’re proud of our ongoing efforts to foster diversity & inclusion in the workplace. Individuals seeking employment at Starling are considered without regard to race, religion, national origin, age, sex, gender, gender identity, gender expression, sexual orientation, marital status, medical condition, ancestry, physical or mental disability, military or veteran status, or any other characteristic protected by applicable law.

When you provide us with this information, you are doing so at your own consent, with full knowledge that we will process this personal data in accordance with our Privacy Notice. By submitting your application, you agree that the Starling Group will collect your personal data for recruiting and related purposes. Our Privacy Notice explains what personal information we will process, where we will process your personal information, its purposes for processing your personal information, and the rights you can exercise over our use of your personal information.