Role Overview
- Lead a team of engineers, setting direction, managing workloads, and developing capability. Act as the primary security escalation point across the Infrastructure function.
- Own the InfoSec roadmap aligned to Asta’s IT transformation programme.
- Implement and maintain security controls across infrastructure & systems. Harden infrastructure by applying best practices for IAM, PIM, PAM encryption, network security.
- Review and implement recommendations of security tooling, including AD hardening tools like Ping Castle and Semperis Lightening as well as vendor solutions & systems.
- Monitor security alerts and events from SIEM, EDR, firewall, IDS/IPS, & other security tools.
- Triage and prioritise alerts based on severity and impact. Investigate security incidents and suspicious activities using log analysis, packet captures, and forensic techniques.
- Define, own, and drive delivery of Asta’s end-toend security programme spanning PAM, EDR, NDR, SIEM, penetration testing, DLP, and compliance.
- Provide security advisory and managed security services to 20+ syndicate and MGA clients including Carbon Underwriting, Dale Underwriting Partners, and Beat Capital.
- Stay current with emerging threats, vulnerabilities, attack techniques, and security trends.
- Support operational resilience and business continuity planning activities including scenario testing and disaster recovery exercises.
- Design, implement & manage simulated phishing campaigns to test and improve staff awareness of social engineering threats.
Requirements
- 7 years + of hands-on experience with at least at least 3/4 years in a lead, management, or principal role in cybersecurity, combining security engineering and SOC operations or incident response with experience in regulated industry.
- Demonstrable experience leading and developing a security team. Confident communicator able to translate complex security risk into business language for C-suite and board audiences.
- Strong understanding of cybersecurity principles, attack vectors, defense strategies, OWASP Top 10, and the Mitre Attack framework
- Experience with cloud security (Azure/AWS), IAM, secrets management, encryption, & certificate management. Experience with Microsoft 365 security suite including Microsoft Defender, Azure AD Identity Protection, threat analytics, and security compliance tools.
- Hands-on experience with SIEM platforms (Splunk, Crowdstrike (Falcon), Log Rhtyhm, Sentinel, and Microsoft Defender)
- Experience of working with tools such as Varonis, Tenable, Pentera & external and internal SOC processes
Tech Stack
- AWS
- Azure
- Cloud
- Cyber Security
- Splunk
Benefits
At Asta, you’ll enjoy a market-leading benefits package that puts your wellbeing, career development and financial future first. We combine flexible working, strong family-friendly policies and exceptional rewards to create a supportive, inclusive and high-performing workplace.
Our benefits include: ** Work-life balance you can rely on**
- 35-hour working week with hybrid and flexible working
- Generous holiday allowance that increases with service
Your health & wellbeing covered
- Private medical insurance with virtual GP access
- Annual health screening, dental cover and eye care
- Subsidised gym or sports club membership
Support for you and your family
- Enhanced maternity, paternity, adoption and shared parental pay
Rewarding your contribution
- Highly competitive pension with up to 13% employer contribution
- Life assurance and income protection
- Discretionary annual bonus scheme
- Interest-free season ticket loan and salary sacrifice schemes