Job Summary:
At Volaris, we specialize in acquiring, enhancing, and scaling vertical market technology businesses. Our
cyber technologies team drives the cybersecurity maturity, governance, risk management and compliance
across our diverse portfolio of business units - spanning various industries, sizes and complexities. We
support our businesses and partner with them to secure and boost their success.
We are seeking a Cyber Security Engineer to join our cyber technologies team and strengthen our defences
in a dynamic threat landscape. This role combines hands-on security operations with expert guidance,
requiring strong cloud and network expertise to harden and fix systems while serving as a subject matter
expert for the business. You will take ownership of securing Microsoft 365 and Azure, use scripting (Python,
PowerShell) and APIs to automate solutions, and fix firewalls, routers, and web proxies, collaborating with
our cyber team and IT operations to resolve vulnerabilities and act as an escalation point for security
questions across the organization. You will harden M365 and Azure configurations, secure our online brand, and work with teams to
consolidate threat intelligence, correlate it, and prioritize fixes for security gaps. This position requires a
proactive mindset and two to three days a week at our Cardiff, UK office, so applicants should reside within
commuting distance.
Job Description:
Responsibilities:
* M365 Hardening: Harden and fix configurations (e.g., Defender, Entra ID), guiding the team on best practices.
* Automation: Use Python, PowerShell and APIs to automate fixes and integrate solutions efficiently.
* Threat Response: Investigate and resolve threats with M365 Defender and monitoring tools, advising on escalations.
* Brand Protection: Proactively secure and fix online brand threats (e.g., spoofed domains, phishing) using DMARC and related tools, guiding teams on brand-related escalations.
* Network Fixing: Configure, fix, and audit firewalls, routers, and proxies within the team, sharing expertise as needed.
* Web Security: Update and secure web gateway policies, guiding safe browsing standards.
* Threat Intelligence: Work with teams to pull threat data from systems, correlate it, and prioritize fixes for gaps.
* External Monitoring: Identify and fix risks using outside-in platforms, assisting with risk queries.
* Guidance: Provide SME advice and best-practice guidelines for tools and fixes across the business.
Requirements:
* Cloud Skills: Hands-on experience hardening and fixing M365/Azure (Defender, Entra ID), guiding IT ops as needed.
* Scripting/APIs: Proficient in Python, PowerShell, and APIs to automate and implement fixes.
* Network Security: Skilled in fixing firewalls, routers, and proxies, advising teams on resolutions.
* Threat Response: Able to resolve threats with M365 Defender or similar, supporting escalations.
* Brand Protection: Experience securing online brand threats (e.g., spoofing, phishing) and advising on fixes.
* Collaboration: Works with cyber/IT ops to fix systems and share guidance.
* Analytical Mindset: Proactive in resolving and advising on complex issues.
* Communication/Frameworks: Explains fixes and guidance clearly; knows MITRE ATT&CK, OWASP.
* Team Support: Backfill for wider team to ensure operational continuity.
* Flexibility: Open to any other requirements as business needs evolve.
* Location: Resides near Cardiff, UK.
Education and Experience:
* Bachelor's degree (or equivalent) in Computer Science, IT, or related field.
* CISSP or equivalent certification.
* 3-5+ years of hands-on cybersecurity experience in cloud (M365/Azure), network security, and tool fixing, with advisory exposure.
Desirable Skills and Experience:
* Cloud Expertise: Microsoft Certified: Azure Security Engineer Associate or Security Operations Analyst Associate, with M365 hardening and guidance.
* Scripting/Automation: Advanced PowerShell, Python, or API skills for fixes and process guidance.
* Network Expertise: Cisco, Fortinet, or similar certs, with focus on fixing and advising on firewalls/proxies.
* Brand Protection: Success securing DMARC and online brand threats, with advisory experience to reflect both fixing and SME roles.
* Threat Intelligence: Experience correlating threat data across systems to prioritize fixes.
Benefits:
We offer a competitive salary and benefits package crafted to attract and retain top cybersecurity talent. Highlights include:
* Competitive salary with company bonus and comprehensive benefits.
* Professional development and training to sharpen your skills.
* 25 days of paid annual leave.
* Wellbeing support and healthcare cash-back scheme.
* Group Life Assurance for added security.
* Based in Cardiff, UK - a vibrant hub with excellent transport links and a growing cybersecurity network.
* Access to cutting-edge security tools and technologies.
* Flexible hybrid work arrangement.
Worker Type:
Regular
Number of Openings Available:
1 #J-18808-Ljbffr