Who we're looking for
A Security Engineering role has arisen within Information Security to help maintain and improve the security posture of the network perimeter and implement information protection controls while driving automation and innovation.
About Schroders
We're a global investment manager. We help institutions, intermediaries and individuals around the world invest money to meet their goals, fulfil their ambitions, and prepare for the future.
We have around 5,000 people on six continents. And we've been around for over 200 years, but keep adapting as society and technology changes. What doesn't change is our commitment to helping our clients, and society, prosper.
Technology at Schroders
There's a huge amount of change going on at Schroders. Technology's shaping our business more and more, so there are many opportunities waiting to be grabbed. And because we're a big financial player, we can put hefty backing behind good ideas.
We're a serious business – we have enormous responsibilities to our clients and shareholders. But just because we're suited and booted, that doesn't make us stuffy; our tech teams are friendlier and more informal than you might expect.
The base
We moved into our new HQ in the City of London in 2018. We're close to our clients, in the heart of the UK's financial centre. And we have everything we need to work flexibly.
The team
The successful candidate will work within Cloud and Perimeter Security team in partnership with our Security Operations, Security Architecture, Endpoint Security, Security Data Insights teams and the wider Global Technology teams.
What you'll do
In the Perimeter
In Information Protection
• To become an SME in the security stack with focus on Microsoft Purview using data lead decisions to engineer solutions
• SME for Microsoft Purview, leading the organisation with design, support and training for the delivery of Sensitivity Labels, auto-labelling solutions.
• Be a champion of full adoption of Microsoft Purview across the organisation
• SME for Data Loss Protection focused on Microsoft 365, providing design, support and training where required.
• Managing the co-existence of Sensitivity labels and DLP policies between Schroders and Schroders Group Organisations
• Supporting Mergers & Acquisitions projects where required to ensure migrated systems and repositories are transferred securely without MIP and DLP complications.
• Provide The SOC with feedback on recent service requests where information was difficult to find
• Maintain the Tessian platform and its configuration and design
• Champion of automation – always looking for places to automate manual repetitive tasks
DLP Investigation Support
• Support Cloud Engineering in InfoSec with Sentinel log querying to develop Analytic Rules, Playbooks with specific emphasis on DLP
• Development and delivery of security awareness materials to support the organisation's education of Information Protection and DLP
• Work with and support DLP investigation team and help with Runbooks / Knowledge Articles and Rule Tuning to lower alert fatigue
• Incident, Request and Problem Response Management in ITSM tool
Stakeholder Management
• Liaise with RISOs and BISOs to ensure that their GRC requirements are fulfilled and reported against
• Maintain communication channels with Schroders Group Organisations to ensure standard levels of Security Posture and operations between Schroders and it's Groups
• Providing evidence to internal and external auditors
• Change planning and scheduling
• Communicating changes to users on correct level through corporate channels
• Provide technical inputs to senior stakeholders during proof of concepts or day to day running of Enterprise Security Solutions.
Ways of Working
• Following Schroders use of Agile, Continuous, Sprint demos, stand ups etc.
Documentation
• Develop, implement and execute Standard Operating Procedures/technical documentations for security engineering best practices and internal workflows
Domain Knowledge
• Stays current with security technologies and make recommendations for use based on business value.
• Maintains an expert knowledge in the field of Information Security and the related issues, systems, processes, products, and services.
• Contribute to the development of security policies, security standards, and risk governance processes.
The knowledge, experience and qualifications you need
• Next Generation Firewalls
• Internet Proxies
• WAFs
• Azure, AWS
• Microsoft
Information Protection
Data Loss Prevention
Data Classification
• ISTM Familiarity
• Office 365 applications skills
• Knowledge of Agile/Scrum
The knowledge, experience and qualifications that will help
• Palo Alto Firewalls
• Checkpoint Firewalls
• Mcafee Proxies
• Servicenow Integrations
• F5 Web Application Firewall
• Azure Sentinel, logic apps, AWS
• Azure DevOps
• Sentinel/Snowflake query writing skills
• Knowledge of MITRE attack techniques
• Understanding of general operational security practices and principles, threats/vulnerabilities and incident response/investigation methodologies.
Tessian
Qualifications
• AZ-900 – Microsoft Azure Fundamentals
• AZ-104 – Microsoft Azure Administrator
• SC-900 - Microsoft Security, Compliance, and Identity Fundamentals
• SC-200 - Microsoft Security Operations Analyst
• SC-300 - Microsoft Identity and Access Administrator
• SC-400 - Microsoft Information Protection Administrator
• Any Palo Alto Qualification
What you'll be like
• Have an analytical mind-set, be data driven and a keen eye for detail.
• Curious in nature, collaborative, eager to learn and challenges ideas in order to innovate
• Familiarity in at least one programming/scripting language (HTML/KQL/SQL/Regular Expression)
• A team player with excellent communication skills.
• Great attention to detail and time-management skills.
• Demonstrable aptitude and coordination in technical meetings and report writing
We recognise potential, whoever you are
Our purpose is to provide excellent investment performance to clients through active management. Diversity of thought facilitated by an inclusive culture will allow us to make better decisions and better achieve our purpose. This is why inclusion and diversity are a strategic priority for us and why we are an equal opportunities employer: you are welcome here regardless of your age, disability, gender identity, religious beliefs, sexual orientation, socio-economic background or any other protected characteristics.