{"version":"0.1","company":{"name":"YubHub","url":"https://yubhub.co","jobsUrl":"https://yubhub.co/jobs/skill/security-telemetry-analysis"},"x-facet":{"type":"skill","slug":"security-telemetry-analysis","display":"Security Telemetry Analysis","count":1},"x-feed-size-limit":100,"x-feed-sort":"enriched_at desc","x-feed-notice":"This feed contains at most 100 jobs (the most recently enriched). For the full corpus, use the paginated /stats/by-facet endpoint or /search.","x-generator":"yubhub-xml-generator","x-rights":"Free to redistribute with attribution: \"Data by YubHub (https://yubhub.co)\"","x-schema":"Each entry in `jobs` follows https://schema.org/JobPosting. YubHub-native raw fields carry `x-` prefix.","jobs":[{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_4474c998-9c7"},"title":"Cyber Security Engineer","description":"<p><strong>Cyber Security Engineer</strong></p>\n<p><strong>What we&#39;re all about</strong></p>\n<p>At Quantexa, we&#39;re a team of innovators and problem solvers who are passionate about creating real change for our clients and their industries. We&#39;re driven by a desire to do things better than the last time, and we&#39;re always looking for talented individuals to join our team.</p>\n<p><strong>The opportunity</strong></p>\n<p>We&#39;re seeking a highly skilled Cyber Security Engineer to join our Security Operations team. As a Cyber Security Engineer, you will play a key part in protecting Quantexa&#39;s systems and data from cyber threats. You will be responsible for the day-to-day operation, optimisation, and monitoring of core security platforms, with a particular focus on Zscaler, Cloud monitoring through Wiz, and Endpoint Detection and Response through CrowdStrike.</p>\n<p><strong>Responsibilities</strong></p>\n<p><strong>Wiz (Cloud Security Posture Management)</strong></p>\n<ul>\n<li>Monitor and triage Wiz findings daily, validating alerts and determining operational impact.</li>\n<li>Perform tuning and threat hunting within Wiz and other tooling.</li>\n<li>Identify misconfigurations, excessive permissions, and exposed assets, escalating where required.</li>\n<li>Track remediation progress with engineering owners and ensure closure of high-priority issues.</li>\n</ul>\n<p><strong>Zscaler (Web Security Tunnel 2.0)</strong></p>\n<ul>\n<li>Review and triage Zscaler alerts and policy violations, following documented response procedures.</li>\n<li>Investigate suspicious traffic, access attempts, and user activity to determine legitimacy and risk.</li>\n<li>Support enforcement actions by validating policy alignment and working with IT and Cloud teams to remediate issues.</li>\n<li>Monitor coverage and configuration across users and locations, identifying gaps or misconfigurations.</li>\n<li>Support policy tuning by analysing false positives and recommending rule or policy adjustments.</li>\n<li>Contribute to playbook development, operational maturity, and ongoing service readiness.</li>\n</ul>\n<p><strong>CrowdStrike (Endpoint Detection and Response)</strong></p>\n<ul>\n<li>Review and triage endpoint detections, applying documented response steps.</li>\n<li>Execute containment actions, including network isolation and sensor troubleshooting.</li>\n<li>Validate full sensor coverage across the estate and address gaps in coordination with IT.</li>\n<li>Support tuning activities by analysing false positives and proposing rule refinements.</li>\n<li>Contribute to playbook improvements and operational readiness tasks.</li>\n</ul>\n<p><strong>Security Operations</strong></p>\n<ul>\n<li>Conduct initial investigation of security incidents, collect evidence, and escalate based on severity with a keen eye on the quality of the output.</li>\n<li>Perform daily review of alerts across our SIEM, Wiz, CrowdStrike, and other platforms.</li>\n<li>Validate vulnerabilities and configuration weaknesses raised by scanning tools.</li>\n<li>Ability to interpret and operationalise threat intelligence, understand how it informs detection, prioritisation, and response activities, and clearly communicate technical threat intelligence to non-technical stakeholders.</li>\n<li>Support cloud security controls, identity hygiene checks, and network policy reviews.</li>\n<li>Contribute to the ongoing maturity and documentation of operational processes.</li>\n</ul>\n<p><strong>Collaboration and Ways of Working</strong></p>\n<ul>\n<li>Act as a trusted operational partner to the Cyber Security Manager and the wider Information Security team, providing proactive support and consistent engagement.</li>\n<li>Partner closely with DevOps, IT, and Engineering teams to drive timely and effective remediation actions.</li>\n<li>Deliver clear and concise updates on incidents and operational activities proactively, without the need for prompting.</li>\n<li>Actively participate in team stand ups, contributing constructively to continuous improvement and operational maturity.</li>\n<li>Support senior engineers with platform enhancements, integrations, and controlled change activities.</li>\n</ul>\n<p><strong>What you&#39;ll bring</strong></p>\n<ul>\n<li>Demonstrated hands-on experience with security operations, incident triage, or vulnerability management.</li>\n<li>Familiarity with EDR platforms (ideally CrowdStrike) and security telemetry analysis.</li>\n<li>Knowledge of cloud environments, particularly Azure including Entra and Conditional Access, and a good understanding of cloud security concepts.</li>\n<li>Ability to understand alert context, assess impact, and follow structured response processes.</li>\n<li>Strong attention to detail, disciplined documentation, and good communication skills.</li>\n</ul>\n<p><strong>Benefits</strong></p>\n<ul>\n<li>Competitive salary</li>\n<li>Company bonus</li>\n<li>Hybrid workplace &amp; free access to global WeWork locations &amp; events</li>\n<li>Pension Scheme with a company contribution of 6% (if you contribute 4% or more)</li>\n<li>25 days annual leave</li>\n<li>Flexible working hours</li>\n<li>Professional development opportunities</li>\n<li>Access to a range of employee benefits, including health insurance, gym membership, and more</li>\n</ul>\n<p style=\"margin-top:24px;font-size:13px;color:#666;\">XML job scraping automation by <a href=\"https://yubhub.co\">YubHub</a></p>","url":"https://yubhub.co/jobs/job_4474c998-9c7","directApply":true,"hiringOrganization":{"@type":"Organization","name":"Quantexa","sameAs":"https://jobs.workable.com","logo":"https://logos.yubhub.co/view.com.png"},"x-apply-url":"https://jobs.workable.com/view/5jNMqMFg7cJnLPEDaozihW/hybrid-cyber-security-engineer-in-london-at-quantexa","x-work-arrangement":"hybrid","x-experience-level":"senior","x-job-type":"full-time","x-salary-range":null,"x-skills-required":["Cloud Security Posture Management","Endpoint Detection and Response","Web Security","Security Operations","Threat Intelligence","Cloud Security","Azure","Conditional Access","Entra","CrowdStrike","Wiz","Zscaler","SIEM","Vulnerability Management","Incident Triage","EDR Platforms","Security Telemetry Analysis"],"x-skills-preferred":["Cloud Security Posture Management","Endpoint Detection and Response","Web Security","Security Operations","Threat Intelligence","Cloud Security","Azure","Conditional Access","Entra","CrowdStrike","Wiz","Zscaler","SIEM","Vulnerability Management","Incident Triage","EDR Platforms","Security Telemetry Analysis"],"datePosted":"2026-03-09T16:56:37.142Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"London"}},"employmentType":"FULL_TIME","occupationalCategory":"Engineering","industry":"Technology","skills":"Cloud Security Posture Management, Endpoint Detection and Response, Web Security, Security Operations, Threat Intelligence, Cloud Security, Azure, Conditional Access, Entra, CrowdStrike, Wiz, Zscaler, SIEM, Vulnerability Management, Incident Triage, EDR Platforms, Security Telemetry Analysis, Cloud Security Posture Management, Endpoint Detection and Response, Web Security, Security Operations, Threat Intelligence, Cloud Security, Azure, Conditional Access, Entra, CrowdStrike, Wiz, Zscaler, SIEM, Vulnerability Management, Incident Triage, EDR Platforms, Security Telemetry Analysis"}]}