Senior Security Engineer – Security Operations

Edinburgh, United Kingdom

Full-time


AWS

Apply now

Senior Security Engineer (Security Operations)

Skyscanner is a leading global travel search site and app, a place where people are inspired to plan and book direct from millions of travel options at the best prices. We employ over 1000 staff across eleven offices globally, and, having reached market leader status, we were recently acquired by Chinese online travel company Ctrip in a deal valued at £1.4bn. While we remain operationally independent, our acquisition by Ctrip allows us to take the business to the next level of accelerated global growth. It’s a hugely exciting time for Skyscanner and the over 80m people who use us every month. We are unbiased and free; our secret is in our unique proprietary technology that connects people directly to everything the travel industry has to offer.

This senior position plays a key role in safeguarding Skyscanner’s computer networks and systems. The individual will plan and carry out security measures to monitor and protect sensitive data and systems from cyber-attacks across the business. Whether engineering a system to address a technical security hurdle, protecting our customers' data, or consulting on a wide range of security topics, you are empowered to engage and lead cross-functionally.

We're building some exceptional security tooling,  allowing our engineers to ship changes quickly in a secure way. We are automating processes in AWS, the build and deployment pipeline. You can take a peek of what we are doing here:

Key roles and responsibilities:

  • Implement and review controls to protect Skyscanner data and systems
  • Develop automation and utilize frameworks to scale both protection and mitigation tools
  • Responding to security incidents, and proactively consider how to prevent the same type of incidents from occurring in the future.
  • Coordinate cohesive responses to security events that involve multiple teams across the organization.
  • Build security utilities and tools for internal use that enable the team to operate at high speed and wide scale.
  • Evaluate the impact to the organization of current security trends, advisories, publications, and academic research
  • Ability to communicate effectively at multiple levels of sensitivity, and multiple audiences.
  • Recognize, adopt and instill the best practices in security engineering fields throughout the organization: cryptography, network security, security operations, incident response, security intelligence.
  • Provide subject matter expertise on high level architecture, authentication and system security.
  • Assist in company-wide security initiatives

Knowledge and experience:

  • Extensive knowledge of Internet security issues, cloud architectures, and threat landscape
  • Background in SIEM and vulnerability management – solution deployment, scanner configuration, asset configuration, and analysis.
  • Experience with virtualization technologies, especially with AWS services.
  • Direct experience with security endpoint protection solutions and intrusion detection 
  • Knowledge of risk assessment tools, technologies and methods
  • Experience designing secure networks, systems and application architectures
  • Knowledge of disaster recovery, computer forensic tools, technologies and methods
  • Experience planning, researching and developing security policies, standards and procedures
  • Professional experience in a system administration role supporting multiple platforms and applications
  • Ability to communicate network security issues to peers and management

What else can we offer you……

We also provide for your health with medical insurance, health screening options, gym membership, headspace subscription and an employee assistance programme to support you and your loved ones. Then it gets really interesting, and you can buy more holiday, donate to a good cause, take part in 2 hackdays per year, and 1 charity day, work from your home country for up to 3 weeks, spend up to 30 days working from another of our offices globally.  You also have the option to take part in our extended annual leave which is an additional 3 weeks’ break (unpaid) after 3 years’ service or take 5 weeks’ break (paid) after 5 years’ service.

 #LI-TH1

At Skyscanner, we put travellers at the heart of everything we do and we’re obsessed with turning their travel dreams into reality. And we’re only 1% done! Highly curious. Highly motivated. Highly skilled. We bring great minds together to make the hard stuff easy for travellers. Are you one them?

skyscanner.net

~40m monthly active users