Salary: 70,000 - 70,000 GBP per year Requirements:
* We are looking for a highly skilled and dynamic Security Engineer to join our IT Security team. The ideal candidate will have a strong background in networking and cloud security, as well as hands-on experience with leading security technologies. Required skills and experience include:
* Networking Expertise: A strong understanding of network protocols, including TCP/IP, DNS, DHCP, and routing, along with experience with firewalls, VPNs, IDS/IPS systems, and network traffic analysis.
* Cloud Security: Extensive experience securing cloud environments, especially Microsoft Azure. Familiarity with cloud-native security tools, including Azure Security Center and identity management solutions like Azure Active Directory.
* Cisco Meraki: Hands-on experience configuring and managing Cisco Meraki firewalls, switches, and other networking/security appliances.
* Palo Alto Networks/Panorama: Expertise with Palo Alto Networks firewalls, including configuration, management, and troubleshooting of security policies and threat management.
* Infrastructure as Code (IaC): Strong experience with Terraform for infrastructure automation, particularly in security-related use cases.
* SIEM Solutions: First-hand experience working with SIEM solutions, particularly Microsoft Sentinel SIEM, including designing and managing rule sets and incident response workflows.
* Cybersecurity Frameworks & Compliance: Knowledge of Cyber Essentials Plus and ISO 27001 compliance requirements, with the ability to help maintain and audit compliance for ongoing certifications.
* Threat Hunting & Incident Response: Demonstrated experience with proactive threat hunting and incident response, including the development of automated workflows.
* Automation & Scripting: Proficiency in scripting languages such as Python, PowerShell, or Bash to automate tasks and security operations.
Responsibilities:
* In this role, I will be responsible for ensuring the security and integrity of our systems by providing proactive threat detection and response, and supporting the implementation of security controls and policies across cloud, on-premise, and hybrid environments. My key responsibilities will include:
* Designing, implementing, and managing network security architectures, including firewalls, VPNs, and other perimeter security technologies.
* Configuring, deploying, and managing Cisco Meraki solutions for network security and monitoring.
* Implementing and managing security controls in cloud environments, focusing on Microsoft Azure security best practices.
* Working with Palo Alto Networks or Panorama solutions for enterprise-wide network security and threat management.
* Leveraging Infrastructure as Code (IaC) principles with Terraform to automate security policies and infrastructure deployment.
* Utilizing Security Information and Event Management (SIEM) solutions to monitor, detect, and respond to security incidents.
* Creating and maintaining runbooks for security incident response, including automating workflows to improve response times.
* Leading threat hunting activities across on-premises and cloud environments to proactively identify potential security threats.
* Assisting with Cyber Essentials Plus and ISO 27001 audits and certifications to ensure company-wide compliance with industry best practices and regulations.
* Collaborating with development teams to integrate security throughout the software development lifecycle (SDLC).
* Conducting regular security assessments, including vulnerability scans and penetration testing, to identify and mitigate risks.
* Staying up-to-date with the latest security trends, vulnerabilities, and emerging threats, and providing recommendations for improvements.
Technologies:
* Active Directory
* Azure
* Bash
* Cloud
* Cisco
* Network
* PowerShell
* Python
* Security
* TCP/IP
* Terraform
More:
Preferred qualifications include certifications such as CISSP, CISM, CISA, or Azure certifications (e.g., Microsoft Certified: Azure Security Engineer Associate), as well as experience in securing hybrid and multi-cloud environments.
Additionally, this role offers a bonus on top of the base salary, and it is a hybrid position with 2 days a week on-site. We currently have interview slots available, and I encourage you to apply now!