Skanska, one of the world’s leading project development and construction groups, is an inclusive and responsible business that is helping to build a better society.
Drawing on our Scandinavian heritage, we are green, innovative, and progressive. We bring together people and technology, as part of our objective to make construction a safer and more collaborative industry.
We are now looking for a Cybersecurity Engineer to join our Cybersecurity Engineering Team which is made up of individuals from around the Skanska world. The primary purpose of the team is to ensure the IT security of Skanska assets and data in line with business requirements, managing security tooling; and providing IT security consultancy and guidance to the wider business.
The team covers all aspects of Security Engineering including Security Tool Engineering, Security Policies, Scripting and Automation, Threat Management, Security Design Standards, Security Architecture and Security Consultancy.
You'll:
* Play an integral role in the development, implementation and compliance of security controls across the enterprise to protect the organisation from threats and attacks and reduce risk to an acceptable level.
* Support the Cybersecurity Engineering Manager; working with Global IT teams and business stakeholders ensuring our systems are designed and implemented securely.
* Work closely with the Cybersecurity Operations team – on occasion supporting significant security incidents.
* Responsible SME for a minimum of 2 Security platforms/services.
* Contribute to the creation, implementation and maintenance of technical design standards that are appropriate to maintain environments in line with cyber security policies.
* Contribute to the delivery of the cybersecurity strategy and roadmap.
* Support the delivery and work winning workstreams by acting as a security consultant to the business.
* Support the creation and tracking of appropriate security metrics and KPI’s.
* Support the selection of and management of 3rd party suppliers/tooling that provide security services.
* Responsible for delivering cybersecurity service improvements.
* Cybersecurity Certifications or equivalent experience.
* Strong experience in working with Azure, building, maintaining, and improving cloud platforms.
* Experience designing and implementing Critical Security Controls.
* Understanding of the MITRE ATT&CK framework.
* Expertise in multiple Security domains.
* Cybersecurity Framework experience.
* Cloud Security Expertise within these areas
o Microsoft Defender for Cloud
o Microsoft Defender for Office
o Microsoft Defender for Applications
o Endpoint / Client Security
o Security Management through Intune and MDM
Reward and benefits
A career with us means you’ll have the freedom to develop your skills and leave your mark on the communities in which we work. Our competitive benefits package will help to enhance your life outside work, too.
#J-18808-Ljbffr