As part of the GSOC, you will be focused on minimising or avoiding impact to our services from cyber-attacks through early detection and, where necessary, urgent response. Working in a 3-on, 3-off alternating day/night shift pattern, you’ll be responsible for ensuring cyber security alerts are investigated inline with playbooks throughout the cyber incident lifecycle. This includes initial triage, detailing investigative steps to support findings, taking appropriate response actions or escalation as necessary.

This role sits within the Detect & Respond sub-team of the Group Security Operations Centre, under the Cyber Security tower in Security & Resilience.

At Nationwide we offer hybrid working wherever possible. More rewarding relationships are supported through our hybrid approach, bringing colleagues together across our UK wide estate, whilst also supporting generous access to home working. We value our time in the office to solve problems, to learn, and to feel connected.

This role operates on a 3-day, 3-off, 3-night, 3-off shift pattern, working 12 hour shifts from 07:00-19:00 or 19:00-07:00. There is a shift allowance on top of the base salary.

As this job is working on a shift pattern, including nights, the hybrid expectation will be to work from our Swindon or London office roughly twice a month. There is the requirement to attend ad/hoc meetings and workshops in these offices when required.

If we receive a high volume of relevant applications, we may close the advert earlier than the advertised date, so please apply as soon as you can.

What you’ll be doing

Part of your role will be to act as a point of experience and escalation for junior analysts, to guide and drive critical thinking around investigation steps and appropriate response actions; ensuring that, when action is required, it is appropriate and timely.

Your role will often require close collaboration with other parts of the business, to help identify, enable, and drive the right investigation steps and response actions. The GSOC defends the whole of Nationwide and Virgin Money’s estate, both Member-facing and support capabilities, requiring engagement and communication with both technical and non-technical teams across the business.

You’ll help mature our internal processes, developing or defining appropriate detection, response and containment capabilities as well as contributing to the GSOC Strategy. You will help shape our future technology direction, suggesting and assisting with innovative ways to combat contemporary cyber threats so we remain fit to find and confront malicious activity.

About you

• Experience of working within in a Cyber Security team (e.g., SOC, Cyber Incident Response, Pen Testing).
• Hands on, practical experience of security monitoring platforms, threat hunting and incident response.
• Working knowledge of the MITRE ATT&CK framework.
• Working knowledge of Windows and/or Linux operating systems fundamentals
• Experience in writing or following security incident response playbooks.
• The ability to build good working relationships with both technical and business stakeholders, gaining their respect and trust based on your knowledge and professionalism.
• The ability and desire to quickly learn new technologies.
• A problem-solving mindset to propose solutions to continuously improve our service offering.
• The ability to act as a technical escalation point for junior colleagues, coaching and mentoring to enable skillset development.

Our customer first behaviours put customers and members at the heart of how we work together. They are the set of behaviours that every colleague needs to display, in every role:

• Feel what customers feel - We step into our customers’ shoes, using their feedback and insights to empathise with them and to understand their needs, so that every decision we make starts and finishes with our customers in mind
• Say it straight - We are brave in speaking out and saying what we think – we’re honest and direct with good intent, openly sharing diverse perspectives to reach the best conclusions and using language everyone can understand
• Push for better - We don’t settle for mediocrity, we challenge the status quo, taking responsibility for continuous improvement and personal development
• Get it done - We prioritise what will have the greatest impact, we are decisive, and we take accountability for delivering brilliant customer outcomes.

You can strengthen your application by showing how our customer first behaviours resonate with you, and where you may have already demonstrated these.

The extras you’ll get

There are all sorts of employee benefits available at Nationwide, including:

• A personal pension – if you put in 7% of your salary, we’ll top up by a further 16%
• Up to 2 days of paid volunteering a year
• Life assurance worth 8x your salary
• A great selection of additional benefits through our salary sacrifice scheme
• Wellhub – Access to a range of free and paid options for health and wellness.
• Access to an annual performance related bonus
• Access to training to help you develop and progress your career
• 25 days holiday, pro rata
• Shift allowance

Banking – but fairer, more rewarding, and for the good of society

We forge our own path at Nationwide.

As a mutual, we’re owned by our members - those customers who bank, save or have a mortgage with us. We challenge the financial sector status quo. We don’t see customers as the engine of our own profit. We share our profits with them and put their needs first. Always there when they need us. Supporting them and their lives.

If you’re inspired by fairer finances, passionate about making a meaningful impact, and truly care about our customers, you’re one of us.

At Nationwide, you are challenged to grow and rewarded for doing so. Valued. Recognised. Inspired to be your best. As a community we want our working lives to count. As a team, we celebrate what we achieve. As a standard-setter, we work for the good of customers, communities, and broader society.

We are Purpose-driven. Uncompromisingly Customer. Unstoppably Nationwide.

What to do next

If this role is for you, please click the ‘Apply Now’ button. You’ll need to attach your up-to-date CV and answer a few quick questions for us.

We respond to everyone, so we will be in contact shortly after the closing date to let you know the outcome of your application.

#LI-post