Role Profile

The Infrastructure Security Engineer will be part of a team required to provide support for security related tooling deployed by the group as well as providing vulnerability management support for core infrastructure. The Infrastructure Security Engineering will also be required to define security related standards for infrastructure deployed by the group.

The responsibilities of the role will include:

• Development of security operations for monitoring, testing, audit and compliance of the organisation infrastructure.
• Design, coordinate and oversee security testing of infrastructure to verify the security of systems and drive the remediation of identified vulnerabilities.
• Provide security risk assessment & recommendations, ensuring appropriate controls are in place to protect the business, and our customers.

Useful Experience

• Commercial software security experience
• DevSecOps approach to infrastructure security/cloud security
• Experience with implementing and automating security in cloud environments (AWS, MS Azure)
• Experience with building custom alerting and detection strategies
• Coding/Scripting in any modern language
• Appreciation of technical risk definition and methodologies
• Network Intrusion Detection
• Familiarity with encryption protocols and techniques

Required technical skills

• Strong working knowledge of server infrastructure - Windows Desktop/Server based operating systems (Windows 10 + Server 2016 onwards)
• Virtualisation - VMWare vSphere/VMWare Horizon
• PowerShell Scripting
• Experience of Windows Security Tools and Standards
• AD and GPO hardening and administration
• Microsoft Identity Management
• Vulnerability Threat Management concepts and tools (such as Rapid7, Qualys, Nessus)

Desirable technical skills

• Varonis Product Suite
• SIEM (Qradar/AlienVault)
• Endpoint protection: CrowdStrike, Symantec, McAfee
• Network Microsegmentation concepts
• TrendMicro IDS
• Forcepoint Web Security - Websense
• VMware, SRM
• Jenkins Automation
• Puppet Configuration Management
• MS SQL 2016

This role will require a 100% focus on technical activities.

Key Responsibilities

• Working closely with architecture and solutions design to ensure that requirements and designs are clear.
• Production and maintenance of infrastructure security engineering standards.
• Advise OS engineering teams on security standards for builds.
• Identify opportunities to automate security related processes and feedback to engineering for implementation.
• Evaluate security vulnerabilities and advise engineering on appropriate remediation methods.
• 3rd line support for security tooling.
• Ensuring that all software deployed on new builds is supported and appropriately licensed.
• Change Management adopting best practice from the ITIL framework
• Monitor work load, manage time and prioritise requests
• Work closely with project delivery teams and third-party suppliers’ teams to resolve problems requiring additional input

Candidate Profile / Key Skills

• Expert in Windows Technologies and Security
• Broad knowledge of technologies used in financial datacentre design & architecture
• Broad technology base and experience, not vendor specific
• Commercially minded
• Knowledge and practical experience in a number of significant and complex projects, spanning multiple technology platforms
• Experience in financial services desirable
• Strong client management skills
• Good knowledge of ITIL Service Management Framework
• Vendor Management Skills
• CISSP/CompTIA Security+ certification

  Key Behaviours

  Communication

• Oral and written communications are tailored to their audience’s needs, well structured, persuasive, concise and based upon fact.

Analysis and Problem Solving

• Analyses issues to identify the most commercial, realistic and pragmatic solutions. Considers all options to ensure

Collaboration

• Shares information across teams.

Managing Relationships

• Demonstrates the knowledge and expertise in their field to have credibility with their peers

Delivery

• Takes responsibility and accountability.

High Performance

• Pro-active and demonstrates initiative

Qualifications and Experience:

• 7+ years experience in MS Windows and VMWare Operations and Project delivery
• Windows and/or VMWare accreditation desirable
• Demonstrated exposure to financial markets and associated technologies
• Good Project Management and planning skills, ideally knowledge of Prince 2.