We are a technology adoption and technical consulting firm, enabling our clients to achieve their business goals on their journey to success.
Job Description:
As a Security Engineer, you will play a critical role in safeguarding our organization, our clients, and our partners from cyber threats. You will implement and maintain security measures to protect our systems, networks, and data from unauthorized access, attacks, and breaches. You will work closely with other members of the Security Operations team and directly with clients to ensure that our security systems are up to date and effective.
Key Responsibilities:
* Implement and maintain security measures to protect our systems, networks, and data
* Work closely with the Security Operations team and clients to ensure security systems are up to date and effective
* Manage and execute phishing campaigns using tooling
* Lead vulnerability scans and provide valuable feedback with accurately tuned reports
* Deliver technical recommendations on regular client cadences with support from a Cyber Security Project Manager
You will spend most of your time working with the Microsoft Security Stack and Microsoft Sentinel, deploying and updating KQL analytical rules or Content Hub solutions to improve detection and response capabilities. You will be responsible for responding to quarantined emails, ensuring Defender threat policies are effective, and creating Playbooks (Azure Logic Apps) to automate workflows and improve efficiency.
You will also be responsible for auditing and improving client security environments, largely based around the Microsoft 365 Security Suite, including items such as improving Secure Score, Device Tagging, Defender Policy Management, Exchange Management, and all such tasks related to the general security lifecycle.
Requirements:
* Bachelor's degree in Computer Science, Cyber Security, or a related field
* Or equivalent and demonstrable experience
* Extensive experience in Security Engineering or a related field
* Strong knowledge of security protocols and standards such as ISO 27001, GDPR, and PCI-DSS
* Experience with vulnerability testing and risk analysis
* Knowledge of network and web-related protocols and technologies such as TCP/IP, HTTP, and DNS
* Strong knowledge and understanding of Microsoft Sentinel, Microsoft Defender 365, and Microsoft Defender for Office 365 etc
* Strong knowledge and understanding of KQL, PowerShell, and Azure Services
* Experience using common vulnerability scanning tools and interpreting their results
Preferred Qualifications:
* Proficiency in certain languages, standards, and assemblies/tools such as Python, Bicep, ARM, JSON
* Familiarity with ARM, Jinja2, Codeless Playbooks, Azure Functions
* Professional certifications such as AZ-500, SC-100, SC-200, CISSP, CEH, CYSA+
* Github portfolio of solutions you've built
What We Offer:
* Private Medical Insurance
* Life assurance
* Critical illness
* Flexible benefits – Choose what suits you
* Access to a discount store
* Fruit, cereal, toast, biscuits, squash, fizzy drinks, etc. in the office
* Celebrations for exciting life events
* Matched charity donations
* 25 days leave, plus a day for your birthday, plus cake sent to home
* Enhanced family leave
* Length of service awards
* Monthly socials
* Summer party get together for all the family
* Continuous Training
* Peer Reward programme
* Flexible working
* Cycle to work scheme
* Everymind at Work
* Agile working
* Branded SWAG for all employees and new joiners
* Cultural champions – Focussing on celebrating our diversity
* A host of clubs to get involved with - Running club, Football, Parents hang out, Motivational speakers