Senior Security Engineer, reporting to the IT Security Officer, you will work as part of a 3-person IT Security team. As the Senior Security Engineer, you should have at least 5 years security team leadership and project management. You will implement and maintain robust security systems and protocols across the IT infrastructure. You will conduct risk assessments and vulnerability scans, mitigate vulnerabilities identified in penetration testing, and implement preventative measures to protect against cyber threats. You will monitor the security infrastructure and detect and respond to potential threats. You will mentor and develop the IT security engineer and collaborate with the IT team to ensure compliance with security standards and best practices; you will essentially be a key technical leader in safeguarding sensitive data and systems.
Key Responsibilities/Duties
* Manage the Secure Web Gateway
* Manage the Email Security Gateway
* Carry out vulnerability scans, identify risks, and remediation.
* Manage the perimeter and VPN firewalls.
* Manage MFA and SSO.
* Manage MDM\MAM and Conditional Access
* Manage security certificates and keys.
* Deliver Cyber Security Awareness Training
* Remediate vulnerabilities and weaknesses identified during penetration testing.
Experience - Essential
The successful candidate will have a good working knowledge and experience in managing the majority of the following technology stack
* CrowdStrike EDR
* Mimecast Mail Security Gateway
* Duo
* Okta
* Rapid7 IVM, Tenable IO or Nessus
* Palo Alto Firewalls and Panorama
* InTune and Conditional Access
* Entra ID, Purview, Defender, Active Directory, DNS, GPO
Experience - Desired
Experience using the following technology stack would be advantageous; understanding the principles is required.
* Cisco Secure Access
* Cisco Umbrella
* Cisco ASA
* Digicert Certificates and Microsoft Certificate Services
* Ivanti patching
* Kali Linux (NMAP, Metasploit, BurpSuite, John etc)
* Microsoft Purview
Candidate Profile
* Desired Education: CISM, CISSP, OSCP or other penetration testing qualifications.
* Industry: Financial services, SOC, Pentesting is desirable
* Personal Skills:
Excellent inter-personal, written and verbal communication skills
The ability to handle multiple priorities, tasks and projects simultaneously
Clear and precise verbal and written communication
Ability to deliver presentations to staff
Cross functional influence, engagement and collaboration skills
Location and Hours
* The position is usually based in our London Head Office, which is currently located in High Holborn.
* Hours: The team works on a shift pattern to ensure cover from : (0730 to 1630 (2 days working from home), and 0830 to 1730 (3 days working in the office))
* There will be periods of the weekend and out-of-hours work.