Security Engineer
About the Role:
My client, a leader in the energy sector, is seeking an experienced Security Engineer to support critical IT operations. This is a 6-month contract with a high likelihood of extension. The role offers a day rate of £550/day inside IR35 and is predominantly remote, with occasional site visits required.
You will play a vital role in delivering secure, scalable IT solutions while ensuring systems and applications remain resilient against evolving cybersecurity threats.
Key Responsibilities:
* Policy Ownership: Apply and maintain security policies to meet system objectives.
* Testing & Validation: Develop and execute cybersecurity testing plans.
* Risk Management: Identify security gaps, recommend mitigations, and create risk management plans.
* Implementation: Design and implement measures to resolve vulnerabilities and enhance system resilience.
* Administration: Configure and manage cyber defence applications (e.g., VPNs, antivirus) to maintain operational efficiency.
* Documentation: Accurately record and maintain all security implementation and operational activities.
* Collaboration: Work closely with analysts, project managers, and vendors to ensure compliance and security best practices.
Essential:
* Degree in a relevant field or equivalent experience.
* Proven expertise in designing and maintaining technical solutions for large-scale systems.
* Knowledge of IT security principles, risk management, and network security methodologies.
* Experience in IT security operations, compliance, risk, and governance.
* Eligibility to obtain and maintain Security Check (SC) clearance.
Desirable:
* Certifications such as CISSP, AWS, Microsoft Azure, or SAFe.
* Familiarity with IT development lifecycles and regulatory environments.
* Experience in utility or similar sectors.
Abilities:
* Analyse and resolve systemic security issues.
* Design secure systems using advanced tools and methodologies.
* Work effectively in a fast-paced, dynamic environment.
Knowledge:
* Cybersecurity principles, network protocols, and secure system design.
* Risk assessment, vulnerability management, and emerging threat landscapes.
Skills:
* Secure configuration management and troubleshooting.
* Designing and implementing network security architecture.
* Vulnerability scanning and system hardening.