Security Engineer
Do not pass up this chance, apply quickly if your experience and skills match what is in the following description.
Full Time | West London | Hybrid (2 in 3 WFH)
£75,000 - £90,000 per annum
Is this the Security Engineer role for you?
Crone Corkill are assisting a West London based scale-up as they look to add a Security Engineer to the business. Working as part of a diverse organisation, you’ll be responsible for collaboration across the technical teams, whilst also being capable of working independently. Please note that this JD is a comprehensive list of what you can expect to be involved in, though they don’t expect you to have every single skill mentioned below.
You’ll ensure endpoint protection and securing of the cloud infrastructure, whilst also being involved in the architecture of their applications from network to API level, using CI/CD pipelines to implement the automation of security processes, responding to identified threats quickly, and assisting with security tests as they look to implement mitigation measures.
What will you do as a Security Engineer?
* Monitor the infrastructure using their available SIEM, EDR, Vulnerability, DLP and SAST/DAST tools
* Respond to threats, vulnerabilities and incidents quickly
* Provide sound knowledge on the architecture of their applications from network to API level (emphasis on security)
* Perform security tests, implement mitigation measures, analyse code and ensure the SDLC remains secure
* Implement the automation of security processes
* Assist in driving their security strategy by collaborating across teams, liaising with stakeholders and ensuring security is immersed in the company culture
What skills do you need to be a Security Engineer?
* Splunk – Also happy with other SIEM tools
* CrowdStrike – Also happy with other EDR tools
* Qualys – Also happy with other Vulnerability tools
* SAST/DAST experience
* Performing Windows & Linux sys admin
* AWS ideally
* Scripting and automating tasks – Flexible with languages
* Infrastructure as Code (IaC) mindset – Happy with Terraform, CloudFormation etc
* Best practice for Cloud Security, logging & monitoring, incident response etc
* Knowledge of ISO27001
What’s in it for you?
In return you’ll be joining an intriguing organisation in its relative infancy. Though they’ve been around for several years and operate as a scale-up, they haven’t grown too fast and operate with a good company culture. The foundations for the security team have already been laid, so this gives you a really good opportunity to help push them forward with lots of autonomy in the role for you.