Starling is the UK’s first and leading digital bank ona mission to fix banking! We built a new kind of bank because weknew technology had the power to help people save, spend and managetheir money in a new and transformative way.We’re a fully licensedUK bank with the culture and spirit of a fast-moving, disruptivetech company. We’re a bank, but better: fairer, easier to use anddesigned to demystify money for everyone. We employ more than 4,000people across our London, Southampton, Cardiff and Manchesteroffices.Our technologists are at the very heart of Starling andenjoy working in a fast-paced environment that is all aboutbuilding things, creating new stuff, and disruptive technology thatkeeps us on the cutting edge of fintech. We operate a flatstructure to empower you to make decisions regardless of what yourprimary responsibilities may be, innovation and collaboration willbe at the core of everything you do. Help is never far away in ouropen culture, you will find support in your team and from acrossthe business, we are in this together!The way to thrive and shinewithin Starling is to be a self-driven individual and be able totake full ownership of everything around you: From building things,designing, discovering, to sharing knowledge with your colleaguesand making sure all processes are efficient and productive todeliver the best possible results for our customers. Our purpose isunderpinned by five Starling values: Listen, Keep It Simple, Do TheRight Thing, Own It, and Aim For Greatness.Hybrid WorkingWe have aHybrid approach to working here at Starling - our preference isthat you're located within a commutable distance of one of ouroffices so that we're able to interact and collaborate in person.About the RoleWe’re open-minded when it comes to hiring and we caremore about aptitude and attitude than specific experience orqualifications. The opportunity is to develop and deliver yourengineering and/or analyst skills within the Cyber security group,we recognise that an individual's professional development,strengths and preferences will change over time and so will thedemands and opportunities within the bank.We value people beingengaged and caring about customers, caring about the code theywrite or the  business systems and processes they develop tomake Starling Secure. RequirementsAs a member of the Cyber Securityteam, whilst It is not expected that you will have worked in all ofthese areas, you will have a broad experience and knowledgeacross:Essential Promote cyber security standards, procedures &guidelines, and best practices outside the security functions.Strong communication and interpersonal skills including the abilityto explain complex security concepts to technical and non-technicalaudiences.  Ability to engage and communicate with seniorstakeholders and support teams across any number of businessfunctions. Understanding of cyber security controls acrossdifferent technology architectures including cloud (AWS, GCP)Design, development (including scripting and configuration) andcontinuous improvement of security solutions. Security developmentlifecycle and deployment. Champion efforts to secure businessprocesses and data through collaboration  Understanding andawareness of security principles including privileged access, rolebased access  technologies and approaches. Innovation mindset.Enjoy problem solving. Be self motivated and want to continue tolearn and develop and challenge. Programming skills e.g. Python,Go, Java, Rust. Engage with the broader security community withinand external to the organisation. Desirable Experience within oracross Identify/Detect/Protect/Recover/Respond or Governance NISTDomains. Experience with security control frameworks such as NISTCSF, CIS benchmarks, ISO27001, SOC2. Specific Job Skills andResponsibilitiesSecurity Event & Incident Management: Provideleadership and direction during High Priority incidents.Demonstrate command and control, whilst maintaining an overallincident perspective and ensuring the Incident Management processesare followed. Produce clearly written Post-Incident reporting, andconduct Post-Incident Reviews to ensure lessons learned andremediation steps are implemented. Acting as Engineering liaison,providing SME knowledge on infrastructure during an incident. Participate and contribute to threat led investigation and exerciseactivities providing guidance and recommendation on improvementsfor implementation. Stay abreast of current industry trendsrelevant to the business and cybersecurity. Security Information& Event Management Development: Identify, prioritise, define,and enhance log ingestion (including new sources) into theorganisations SIEM & SOAR enabling continuous improvement inevent detection, incident analysis and response. Enable andcontinuously improve the automation of processes within the widersecurity operations team leading to effective, timely and scalableresponse in the evolving threat landscape. Support the developmentof log pipelines to the SIEM, collaborating with wider technologyteams across requisite architecture, in particular dataengineering. Support the development and continuous improvement oflog parsing capabilities. Ensure technical development withinsecurity operations is aligned to wider system development lifecycle and operating procedures. Ensure security operationsdevelopment and automation is clearly documented providingknowledge share to the wider security operations team asappropriate. Act as a subject matter expert, review and advise onsecurity log architecture to enable development of effectivedetection controls and performant log ingestion. Evaluate newsolutions and improvements to existing telemetry and processesbased on incident outcomes and capability assessments; identify andpropose practicable proportionate improvements. Continually developand maintain knowledge and expertise on the Bank proprietarysystems, security model and wider security best practices. SecurityOperations Team wide responsibilities: Collaborate with the widerSecurity operations team in the definition and execution oftraining to ensure effective security event and incident managementprocedures. Collaborate with the wider Security and business teamsto enable continuous improvement in the efficacy of securityinformation and event management control environment. Acting asEngineering liaison, providing SME knowledge on security operationsinfrastructure and information analysis during an incident. Support and guide further Information Security Engineers within theSecurity Operations team in the delivery of new capabilities andcontinuous improvement of team solutions. Participate in cybersecurity team hiring procedures as required. InterviewprocessInterviewing is a two way process and we want you to havethe time and opportunity to get to know us, as much as we aregetting to know you! Our interviews are conversational and we wantto get the best from you, so come with questions and be curious. Ingeneral you can expect the below, following a chat with one of ourTalent Team: Overall personality and general interview - Reportingmanager - 30 minutes Role based competency - Security team -1.5 hours Final Interview - Leadership - 30 minutesBenefitsStarling technology works in a hybrid pattern both fromhome and one of our three offices. Our preference is that you’relocated within a commutable distance to either our London,Southampton or Cardiff office, so that we’re able to see each otherand collaborate in person three days a week. 25 days holiday (plustake your public holiday allowance whenever works best for you) Anextra day’s holiday for your birthday Annual leave is increasedwith length of service, and you can choose to buy or sell up tofive extra days off 16 hours paid volunteering time a year Salarysacrifice, company enhanced pension scheme Life insurance at 4xyour salary & group income protection Private Medical Insurancewith VitalityHealth including mental health support and cancercare. Partner benefits include discounts with Waitrose, Mr&MrsSmith and Peloton Generous family-friendly policies Perkboxmembership giving access to retail discounts, a wellness platformfor physical and mental health, and weekly free and boosted perksAccess to initiatives like Cycle to Work, Salary Sacrificed Gympartnerships and Electric Vehicle (EV) leasing About UsYou may beput off applying for a role because you don't tick every box.Forget that! While we can’t accommodate every flexible workingrequest, we're always open to discussion. So, if you're excitedabout working with us, but aren’t sure if you're 100% there yet,get in touch anyway. We’re on a mission to radically reshapebanking – and that starts with our brilliant team. Whatever camebefore, we’re proud to bring together people of all backgrounds andexperiences who love working together to solve problems.StarlingBank is an equal opportunity employer, and we’re proud of ourongoing efforts to foster diversity & inclusion in theworkplace. Individuals seeking employment at Starling Bank areconsidered without regard to race, religion, national origin, age,sex, gender, gender identity, gender expression, sexualorientation, marital status, medical condition, ancestry, physicalor mental disability, military or veteran status, or any othercharacteristic protected by applicable law. When you provideus with this information, you are doing so at your own consent,with full knowledge that we will process this personal data inaccordance with our Privacy Notice. By submitting your application,you agree that Starling Bank will collect your personal data forrecruiting and related purposes. Our Privacy Notice explains whatpersonal information we will process, where we will process yourpersonal information, its purposes for processing your personalinformation, and the rights you can exercise over our use of yourpersonal information.