Search Vacancies

Security Engineer

Business Role Type
Business Support Role
Business Support Departments
Security
Location
Cardiff
External Closing Date
13/12/2019

This vacancy has now expired, and is not accepting any new applications.

Please search for live opportunities or use the Register Interest facility to sign up for job alerts and/or leave your CV speculatively.

The Security Engineers are responsible for implementing, configuring and evolving the security technology portfolio. This is a proactive and responsive relationship and the capability to maintain that balance is a key part of the role.

The successful person will have a strong technical background and see the macro view, direction of travel and complexity of the contemporary IT landscape, as an opportunity.  You will provide solutions that harmonise with IT and create enabling security functions that allow the business to innovate quickly. Solutions will have capacity and flexibility, and will integrate well with other security functions.

Responsibilities

  • Day-to-day support and maintenance of security tooling
  • Take a threat led approach to generating mitigation and countermeasures
  • Maximise security value from existing investments
  • Understand the key risks the organisation faces, and the key tactics techniques and procedures that likely threat actors will exploit, and create control boundaries to intersect these domains
  • Work collaboratively with the wider Information Security team. This includes working with the Incident Response team, assisting with incidents and enhancing incident response tooling; Security Architecture to ensure that any existing constraints are overcome within forward looking plans; and with the Security Consultants to provide additional technical knowledge
  • Take part in post incident reviews and propose engineering resolution, to improve results in any future recurrence
  • Champion best practice methods for web application hosting and protection, endpoint management, and software defined protection
  • Monitor the capacity of security tooling and support infrastructure and project future capacity for security products
  • Recognise that telemetry for security products will increasingly be curated in the cloud, and be prepared to develop API endpoints and connections to collect and collate this knowledge
  • Understand and develop security configurations for micro services, serverless computing, and software as service security solutions
  • Work with the third-party suppliers of the security products
  • Participate in the Information Security on-call rota

Experience Required

The role would suit someone who has worked with a diverse set of IT/security products across a large on-premise infrastructure managed in house. As the organisation matures, the individual would have a desire to build skills for their team in cloud security technologies, to reach AWS security architect associate level for example.

A strong technical background is required, with in-depth experience in at least one of the following areas:

  • Internet filtering
  • Email filtering
  • EndPoint detection and response
  • Host based firewalling, HIDS/HIPS
  • Antimalware
  • Mobile device management

The candidate should be able to pick up and ingest new technology approaches, and make rapid decisions on the best way to use these technology advancements for the betterment of the overall security posture.

The ability to communicate effectively, constructively, confidently and professionally is key to the success in the role as is the ability to work with IT and Information Security teams and the wider business.

A working knowledge of financial services and the typical business processes involved, together with the threat actors and their relevant tactics, techniques and procedures, would be of significant advantage.

Other key skills include:

  • An excellent knowledge of Information Security principles
  • Keen attention to detail and excellent analytical skills
  • Ability to actively manage workloads to meet business and department requirements

Highly desirable:

  • Technical information security certifications such as CEH, CISSP, etc.
  • Degree in an Information Security / Computing discipline

About Admiral

Our success goes hand-in-hand with having a strong culture. Our philosophy is simple yet effective: people who like what they do, do it better. Our culture is honest, open and wholeheartedly focused on four key areas: Communication, Equality, Reward & Recognition, and Fun.

The Recruitment Officer looking after this role is Valvanuz Guerrero. If you’d like to know any more about the position, please feel free to drop her an email Valvanuz.GUERRERO-PEREZ3@admiralgroup.co.uk or give her a call on the Recruitment line - 0800 118 1619.

At Admiral, we are proud to be a diverse business where we put our people and customers first. We understand that a good work life balance is important, and we want you to have an element of freedom to define a working lifestyle that supports this. We are happy to talk about flexible working. Please ask your Recruitment Officer for more information.

 

#LI-LP1