This Job Vacancy has Expired!

Senior Security Engineer

CV-Library

Posted on Nov 26, 2021 by CV-Library

Cambridge, Cambridgeshire, United Kingdom
IT
Immediate Start
£55k - £58k Annual
Full-Time
Senior Security Engineer

This position is fully remote with 1 trip per week to the office in Cambridge. There will also be international travel around Europe (roughly 6 times per year)

Reporting to the Senior Information Security Officer, this role requires the design, development and implementation of technical infrastructure and security systems/tools for the organisation and partners.

Responsibilities include technical design and implementation of tools and systems used to provide security services, as well as providing information security advisory and consulting services. The post holder will also undertake technical compliance monitoring and technical security assessments.

Role Accountabilities

* Design, develop, engineer, implement and/or manage cybersecurity tools and systems/infrastructure;

* Direct the information security knowledge base for maintaining a current knowledge of the security technologies, threats, vulnerabilities concepts and controls, including appropriate countermeasures, and advising on security best practices and recommendations;

* Produce design documentation, best practice recommendations, secure system configurations and other documents

* Assist analysts in monitoring security threats and risks and lead the detection and investigation of suspicious security events as technical expert;

* Ensure compliance with regulatory requirements related to the security and privacy of digital information;

* Perform threat intelligence and technology watch activities; Generate announcements suitable for and relevant to customers and users;

* Contribute and provide expert inputs towards the development of security processes/workflows; Contribute towards the development, adoption of, and ensure compliance with security policies and processes;

* Develop, procure and/or customise required security tools and technologies;

* Provide technical incident response support to customers;

* Provide training on security tools and systems, coaching to IT and security staff and other related activities for learning and development / knowledge transfer;

* Present the development of new security systems, tools and/or processes at appropriate forums (e.g. committees, working groups, external stakeholders); Network with key stakeholders and partners.

* Other duties as may reasonably be required

Business Travel

* Regular business travel will be required in this role (approximately 6 trips per year). Travel will mainly be within Europe, but some worldwide travel may be required.

Experience, Knowledge and Skills - Essential

* Extensive ICT experience (networks, system administration and/or development) including experience within information security (preferably engineering)

* Knowledge of open-source tools and operating systems

Skills in at least two of the following areas:

* Programming and/or scripting;

* Penetration testing principles, tools and techniques;

* Vulnerability handling/management/assessments;

* Detection sensors and analysis of sensor data (e.g. honeypots, intrusion detection/prevention systems, netflow, traffic/protocol analysis);

* Security Information and Event Management (SIEM) tools, log aggregation, event correlation.

* Degree, or a comparable level of experience, in IT, information systems, computer science, engineering or related field

One of the following intermediate/advanced-level information security certifications (or comparable or equivalent experienced):

* CompTIA Cybersecurity Analyst (CySA+)

* CompTIA PenTest+

* GIAC (any intermediate level ideally from Cyber Defense or DFIR)

* EC-Council Security Analyst (SA)

* EC-Council Certified Ethical Hacker (CEH)

Desirable

Previous experience in a Security Operations Centre (SOC) or Computer Security Incident Response Team (CSIRT) or demonstrable related information/cyber-security work experience;

Experience with DDOS detection and mitigation

Experience with relevant standards (e.g. ISO 27001) and frameworks (e.g. NIST)

Experience in a Research and Education environment

ITIL Foundation

One or more of the following advanced-level certifications (or comparable):

Any GIAC advanced-level certification(s)

CompTIA Advanced Security Practitioner (CASP+)

(ISC)2 Certified Information Systems Security Professional (CISSP)

OSCP (Offensive Security Certified Professional)

Professional registration with relevant bodies / orgs

Reference: 215259240

Set up alerts to get notified of new vacancies.

Similar Jobs

Senior Security Engineer

West Yorkshire, United Kingdom

£50k - £65k Annual

Security Engineer / Leeds, Hybrid / Contract, £640 a day

West Yorkshire, United Kingdom

Annual Salary

Security Engineer / Leeds, Hybrid / Contract, £500 a day

West Yorkshire, United Kingdom

Annual Salary