Cyber Security Engineer (Ops and Tooling)
Job Summary:
We are in search of a talented and experienced Cyber Security Engineer to enhance our cyber technologies team.
Job Description:
The chosen candidate will hold a pivotal role in bolstering and refining our organisation's cybersecurity posture across endpoints and network infrastructure. Collaborating closely with our cyber technologies team, you will showcase your skills to ensure systems are deployed to optimal standards, kept up to date, and seamlessly aligned with business requirements.
Taking a hands-on approach to security, you will manage and administer the functionality and hardening of an array of security tools throughout our corporate office, encompassing endpoint detection and response (EDR), vulnerability management platforms, web security gateways, firewalls, and security email gateways. Your responsibilities will extend to identifying, analysing, and implementing proactive measures to mitigate future threats. Furthermore, you will provide guidance and assistance to our other businesses, ensuring proper administration of security tools and recommended guidelines, and providing baselines based on your own research and vendor recommendations.
We are seeking a cybersecurity professional with a deep understanding of security best practices and the capability to tackle complex security challenges with confidence. As a CISSP or similarly qualified expert, you will demonstrate extensive knowledge of industry best practices and a dedicated commitment to maintaining the highest standards of security.
Job Location: The position entails a hybrid work model, requiring on-site presence two to three days a week at our Cardiff, UK office, necessitating applicants to reside within commuting distance.
Responsibilities:
* Review existing cybersecurity tools to ensure they align with the organisation's security objectives and provide business value by conducting regular assessments of tooling subscriptions, verifying optimal use of features and functionalities, identifying gaps or underutilised capabilities, and recommending enhancements to maximise value and improve overall security posture.
* Develop and document best practice security guidelines for our tools to our wider businesses.
* Manage and use endpoint detection and response (EDR) tools to identify, investigate, and contain threats.
* Oversee vulnerability management solutions. This involves analysing vulnerability scans to assess risk based on exploitability, severity, and business impact. You will ensure that vulnerability management policies align with current threats and organisational needs. Additionally, you will monitor patch deployment timelines, identify potential delays, and collaborate with IT Operations teams to prioritise and expedite critical vulnerability patching.
* Configure and manage web security gateways to filter malicious traffic and protect against web-based attacks and to control inbound/outbound network traffic on firewalls to recommended practices.
* Configure and manage secure email gateways to defend against phishing attacks and malware delivered via email and assist with the implementation of DMARC compliance across the business.
* Identify and implement strategies to streamline operational tasks by eliminating unnecessary processes, leveraging automation solutions, and optimising workflow efficiency.
* Stay up to date on the latest cyber threats, vulnerabilities, and emerging technologies in cybersecurity tooling, implementing necessary security measures and providing insights and recommendations to enhance the organisation's security capabilities.
Requirements:
* Profound understanding of cybersecurity principles, including zero trust architecture, system hardening, and least privilege access controls.
* Hands-on experience with endpoint detection and response (EDR), vulnerability management, firewalls, web security gateways, and secure email gateways, including expertise in configuring, managing, and auditing these systems.
* Experience with a diverse range of cloud technologies including Okta and Azure, as well as proficiency in traditional Active Directory management and implementation of conditional access policies.
* Proficiency in scripting languages such as Microsoft PowerShell and Python preferred.
* Display strong analytical and problem-solving abilities, with keen attention to detail, alongside a demonstrable capacity to effectively prioritise and execute tasks across multiple projects.
* Excellent communication and collaboration skills, with the ability to effectively interact with technical and non-technical stakeholders.
* Ability to work independently as well as part of a collaborative team.
* Experience in picking up and managing tickets in a ticketing system, ensuring timely resolution and documentation of tasks.
* Reside within commuting distance of our office located in Cardiff, UK.
Education and Experience:
* Bachelor's degree (or equivalent) in Computer Science, Information Technology, or related field.
* CISSP (Certified Information Systems Security Professional) certification or equivalent.
* Proven history of success in cybersecurity, demonstrated through experience implementing and maintaining security measures.
Desirable Skills and Experience:
* Microsoft Certified: Security Operations Analyst Associate, Identity and Access Administrator Associate, Information Protection Administrator Associate or equivalent.
* Experience in system administration, troubleshooting, and recommending security enhancements, with a desired skill in Linux administration and security.
* MySQL and ClickHouse database platforms.
* Identity and access management principles.
* Managing credential leakage and continuous monitoring platforms to identify and mitigate security threats.
Benefits:
* We offer a competitive salary and benefits package, designed to attract, and retain top cybersecurity talent. Here are some highlights:
* Competitive salary and benefits package.
* Professional development and training opportunities.
* 25 days paid leave after first year of employment.
* Wellbeing benefits (including 24/7 online GP and mental health support), Employee Assistance Programme, discounted family health/dental care/eye tests, cycle-to-work scheme.
* Group Life Assurance.
* Located in the vibrant city of Cardiff, with easy access to amenities, transportation, and a thriving cybersecurity community.
* Opportunity to work with cutting-edge security technologies.
* Hybrid work environment.
Worker Type:
Regular
Number of Openings Available: 1
About Us:
At Volaris Group we are all about finding the right people for the right role and allowing them the opportunity to directly contribute to the successes of our organization. Our employees are experts in their field, passionate about what they do and always looking for new and better ways to solve our industry's problems. Our staff come from a wide range of cultural, educational and geographic backgrounds and are able to work in a dynamic entrepreneurial environment that values individual perspectives. We offer competitive compensation, a comprehensive benefits package and the chance to learn from the best in the business.
Volaris Group is an equal opportunity employer, we recruit, hire, train, promote and provide all other privileges of employment to qualified people without regard to age, race, color, creed, national origin, gender, gender identity, gender expression, disability, marital status, veteran status, citizenship status, ethnicity, familial status, religion, sexual orientation or any other classification for which discrimination is prohibited.
Volaris Group is part of a CSI Group of Companies
#J-18808-Ljbffr