The Cybersecurity Engineer will work alongside the Systems Support Team to protect the company by employing a range of technologies and processes to prevent, detect and manage security/cyber threats. We are looking for an exceptional and experienced IT professional to join our Systems Support team. You will have day-to-day responsibility for the IT Security for both on premise and Azure Infrastructure. We are looking for an individual who will bring ideas, enthusiasm and experience to the team, with the primary objective of improving the overall IT security posture of Foresters.
Key Responsibilities & Duties
* Monitor for attacks, intrusions and unusual, unauthorised or illegal activity
* Test and evaluate security products
* Evaluating security implications of delivering solutions via the cloud
* Investigate security alerts and provide incident response
* Monitor identity and access management, including monitoring for abuse of permissions by authorised system users
* Liaise with third party security monitoring solution to resolve issues alerted to Foresters by their solution.
* Liaise with stakeholders about cyber security issues and provide future recommendations
* Generate reports for both technical and non-technical staff and stakeholders
* Assist with internal and external audits relating to cyber security.
* Respond to 'phishing' emails and 'pharming' activity
* Update and develop security policies. Develop company-wide best practices for IT security
* Keep up to date with the latest security and technology developments
* Research/evaluate emerging cyber security threats and ways to manage them
* Fix detected vulnerabilities, in a time appropriate manner, to maintain a high-security standard.
* Work with colleagues to ensure systems remain patched and secure
* Ensure BAU requests are addressed in a timely manner
* Analyse, troubleshoot and resolve incidents escalated by 1st/2rd line support.
* Work closely with infrastructure colleagues to ensure understand how security updates could effect Infrastructure and/or operational requirements.
* Expected to work outside of core hours as the role demands.
* Work with audit teams, internal & external to answer questions within the candidate areas of expertise.
Knowledge, Skills and Experience
* Excellent IT skills, including knowledge of computer networks, operating systems, software, hardware and security
* A good working knowledge of various security technologies such as network and application firewalls, host intrusion prevention and anti-virus
* Proven track record of working with o365, to provide solutions and manage improvements to advance the secure score.
* Work through PEN tests to ensure all appropriate findings are implemented and to work through resolutions on your own and where appropriate with other departments while keeping stakeholders informed.
* Verbal communication skills, including presentation skills, with an ability to communicate with a range of technical and non-technical team members and other relevant individuals
* Written communication skills, for example to write technical reports
* Excellent attention to detail, analytical skills and an ability to analyse complex technical information in order to identify patterns and trends
* An ability to work under pressure, particularly when dealing with threats and at times of high demand.
* Experience with computer network penetration testing and techniques.
* Ability to identify and mitigate network vulnerabilities and explain how to avoid them
* Good knowledge of Cloud technologies and migrations
* Working knowledge of Active Directory
* Good technical understanding of networks/switches infrastructures
Desirable Skills:
* Cyber Security Experience
* Entra
* Azure
* Tenable.io
* FortiNet Firewalls
* O365
* Rapid7
* Scripting
* Group Policy