Technical Specialist - Detection, Engineering & Automation

Job Description

About The Opportunity Job Type: Permanent Application Deadline: 30 September 2025 Job Description Title: Technical Specialist - Detection, Engineering & Automation Department: FIL ? Cyber Defence Operations Location: Gurgaon Reports To: Detection Engineering & Automation Manger - CDO (UK) Level: 4 We?re proud to have been helping our clients build better financial futures for over 50 years. How have we achieved this? By working together - and supporting each other - all over the world. So, join FIL ? Cyber Defence Operations and feel like you?re part of something bigger. Department Description The Global Cyber & Information Security function is a part of the Global Technology department. The Global Technology Group function provides IT services to the Fidelity International business. These include the development and support of business applications that underpin our revenue, operational, compliance, finance, legal, marketing and customer service functions. The broader organisation incorporates Infrastructure services that the firm relies on to operate on a day to day basis including data centre, networks, proximity services, security, voice, incident management and remediation. The Global Cybersecurity Operations function at Fidelity International is part of the Global Cyber & Information Security (GCIS) Group, reporting to the Head of Global Cyber & Information Security. Our mission is to develop an intelligence-led, proactive cyber security response to defend Fidelity and its assets from cyber threats, to reduce risk and business impact. We adopt an ?assumed breach? position using multiple in-depth capabilities for protection, detection and response along with established processes to enable rapid response when an event oocurs. Purpose of your role The successful candidate will be experienced in security operations engineering, understanding the value of automated security actions and how this can enhance an analysts response to events. This is a critical role expected to build and maintain our security control portfolio and help mature our monitoring and response processes. The successful candidate will be comfortable working at a deep technical level, proactively suggesting and implementing control improvements whilst also being able to prioritise backlog engineering work (mainly sourced from our front-line SOC team). The successful candidate will be able to demonstrate understanding of frontline security analysts workloads, experience in simplifying and automating security actions and an understanding on how best to maintain security tooling. You will be responsible to think outside the box and develop high fidelity use-cases that will help defend the organisation from Cyber Adversaries. The role will be supported by a strong security leadership team who are keen to develop our controls underpinned by our investment in leading security tooling. Our leadership team will be looking at this role to significantly decrease our time to respond - a key KPI for us. Key Responsibilities Ensure controls are kept up to date, analysing and utilising new features as they are released Working as part of a global engineering team to deliver high priority and high impact items Proactively improve our front-line teams BAU activities Focus on improvements and innovation that can immediately help free up analyst time Lead regular workshops to obtain suggestions and demonstrate improvements for high firing use-cases, updates to response processes, etc. Working with other security teams to look at how we can use their data to enhance our own monitoring. Ensure integration between security tools is effective and bug free. Experience And Qualifications Experience and strong understanding of frontline security operations. At least 2 years of experience working in Security Operations Engineering with experience in Log On-boarding, Logging Assessment, management of Email security solutions. Competent in scripting languages required for automation e.g KQL, Python, etc Experience working with / managing security solutions like SIEM (Sentinel preferably), Email protection, IDS/IPS, Anti-Virus, EDR (Microsoft Defender), Ticketing tool like ServiceNow (SecOps) Experience in building and fine-tuning Security Use-cases, development of response processes used by SOC. Experience working with Change Management controls and processes for safer release of Changes into the environment. Ability to automate tasks using scripting on both Windows and Linux systems. Programming experience (PowerShell, Bash, Python, JavaScript, Terraform) Familiarity with how to build controls in a scalable easily maintainable way, with exposure to Infrastructue-as-a-code In depth understanding of modern security automation technologies and API?s Banking or Finance industry related experience desirable Nice to have Experience dealing with security incidents using the NIST framework. Security+, CySA+, SC-200, GCIH, GCFA, SSCP, OSCP, ITIL Experience in ServiceNow Security Operations Module Whilst not mandatory, previous experience working in Incient Response, SOC (L2 / L3) will be good Feel rewarded For starters, we?ll offer you a comprehensive benefits package. We?ll value your wellbeing and support your development. And we?ll be as flexible as we can about where and when you work ? finding a balance that works for all of us. It?s all part of our commitment to making you feel motivated by the work you do and happy to be part of our team. For more about our work, our approach to dynamic working and how you could build your future here, visit careers.fidelityinternational.com. For more about our work, our approach to dynamic working and how you could build your future here, visit careers.fidelityinternational.com.