Who we are looking for
An Information Security Engineer, who will focus on IT Security and work alongside other teams to ensure IT systems are built and operated in a secure manner.
The information security engineering team focuses on the technical side of system design, data security and functional audit. Our aim is to ensure that systems and services are built with privacy and security by design. You will be working with colleagues within our governance and compliance functions to provide audit capabilities and confirm data is being used within the bounds of regulatory requirements.
The team ranges from graduates to time-served engineers with backgrounds in system administration, networks, service operation as well as security. We use market leading enterprise level tools, to identify threats to the systems as well as in-house developed scripts and internet research.
The day to day work is fast paced and dynamic as we react to a changing landscape, both from Business priority change and threat landscape.
This role is eligible for inclusion in the Company’s hybrid working from home policy.
Preferred skills and experience
* Extensive experience in information security engineering with practical knowledge of application security, specifically focused on network infrastructure and network engineering.
* Strong knowledge of ITIL principles and IT security governance frameworks ISO 27001, NIST, PCI DSS, CIS Controls and benchmarks.
* Splunk ES practical experience is essential.
* Complete understanding and practical security implementation experience in Microsoft and Linux OS including RHEL7, 8, 9, CentOS 6, 7 and Ubuntu 22.04, 24.04.
* Practical experience and understanding of NG Firewalls, SASE solutions and privileged access management systems.
* Good understanding of data encryption, key management and PKI.
* Knowledge of development in security technologies and automation principles including Ansible and Puppet.
* Strong knowledge of Cloud Security including GCP, Azure, AWS, Office 365.
* Practical knowledge of Python, Java, and PowerShell.
* Solid experience with EDR and XDR solutions for Windows, Linux, Mac and containerisation systems as well as practical experience in email security gateway administration.
Main Responsibilities
* Responding and reporting on system alerts from various monitoring technologies.
* Implementing and managing various security tools.
* Participating in security engineering projects.
* Undertaking security related investigations.
* Liaising with stakeholders, ensuring that external documents are completed safely and that information security requirements are complied with.
* Creating and updating technical documentation.
* Performing daily routine security checks and verifications as per the Business requirements.
* Taking an active role in audits.
* Staying up to date with new and emerging threats, escalating any threats of interest to appropriate teams for further evaluation.
By applying to us you are agreeing to share your Personal Data in accordance with our Recruitment Privacy Policy which can be found at