Job Title: Security Engineer - Nessus Experience Mandatory
Location: Cheshire - 3 days per week in the office
Salary/Rate: Up to £610 per day INSIDE IR35
Start Date: 14/07/2025
Job Type: Contract

Company Introduction
We have an exciting opportunity now available with one of our sector-leading financial services clients! They are currently looking for a skilled Network Security Engineer to join their team for a contract initially until the end of the year.

Job Responsibilities/Objectives
We are looking for an individual who will join the security team of a major nationwide organization, who understands Tenable and its various components. While having experience with implementing the Tenable solution key, this job also requires Full time hands-on administration of the Tenable system as well as managing the vulnerability management aspect of the tool. You will be responsible for maintaining Nessus and the remediation of vulnerabilities across the bank.

1. Installing and Configuring Nessus, Nessus Manager, Nessus Agents, Log Correlation Engine, Nessus Network Monitor, and Security Center on both Linux/Unix and Windows based environments
2. Responsible for installing and configuring Nessus Agents
3. Secure Tenable server an Enable SSL
4. Integrating Tenable products with LDAP, Active Directory, and CyberArk.
5. Responsible for the creation of tenable Organizations, Repositories, and Scan Zones.
6. Responsible for local and LDAP based user management.
7. Responsible for configuring tenable plugins/feeds and adding audit files, licensing the product both online and offline, adding scan policies, audit policies, and credentials to Security Center, and Nessus Manager.
8. Responsible for configuring Nessus Manager scan pulls to Security Center
9. Responsible for importing and adding dashboards, defining scan policies and audit policies, adding scan credentials
10. Responsible for scheduling scans, generating Scan Reports and the Analysis and validation of the scan results.
11. Responsible for monitoring, defining and configuring dashboards

Required Skills/Experience
The ideal candidate will have the following:

1. Strong experience in Vulnerability management domain and experience with working with web Proxy teams and working on vulnerability assessment operational issues
2. Experience in the design and implementation of enterprise-wide security controls to secure systems, applications, network, or infrastructure services
3. Hands-on experience with security tools and devices such as network Firewalls, web Proxy, intrusion prevention system, vulnerability scanner, and penetration testing tools.
4. Demonstrated understanding of TCP/IP Networking concepts and DNS.
5. Related Identity Management tools engineering experience, including installing, configuring and troubleshooting experience with one or more of these tools: CyberArk, Splunk, Tenable-Nessus

Desirable Skills/Experience
Although not essential, the following skills are desired by the client:

1. Previous experience in the financial sector.
2. Working experience of security tool sets eg Firewall Assurance, Cloud Access Security Broker (CASB), Cloud Security Posture Management (CSPM)
3. Experience with ITIL processes
4. Working knowledge of Service Now and/or Remedy Ticket Management Systems.
5. Security+ Certification, MCSE, MCSA, CISSP, or better

If you are interested in this opportunity, please apply now with your updated CV in Microsoft Word/PDF format.

Disclaimer
Notwithstanding any guidelines given to level of experience sought, we will consider candidates from outside this range if they can demonstrate the necessary competencies.

Square One is acting as both an employment agency and an employment business, and is an equal opportunities recruitment business. Square One embraces diversity and will treat everyone equally. Please see our website for our full diversity statement.