Security Engineer - Luton

The Role

• Responsible for the management, implementation, maintenance and configuration of operational security systems and security service capabilities, aligned to IT strategy and security standards
• Responsible for the provision of technical security services
• Responsible for establishing, maintaining and using security engineering standards, processes, procedures and guidelines
• Provide IT teams with security focused technical support and consultancy to ensure compliance with security policies, standards and regulations
• Responsible for continuous improvement for operational security services and contribution to the security engineering roadmap
• Retain a working knowledge of related security technical areas such as; application, network and host, to enable effective liaison with other technical groups and protection of the organisations information
• Develop and operate technical standards, processes, procedures and guidelines
• Produce and disseminate management information in relation to security services, platforms, and the performance and availability of technical information security systems
• Through external organisations keep abreast of emerging trends, technologies and regulation
• Establish mechanisms, behaviours and culture to encourage the protection of the organisations information and information systems
• Out of hours support required on a rota basis

• Ownership and Delivery. Has a clear focus to deliver results, working to targets, reviewing progress and adapting their plans accordingly, motivating themselves/the team to achieve.
• Business Performance. Understands business and external environment, is cost conscious and understands the longer term perspective and implications of decisions.
• Innovation and Change. Is open to new ways of doing things and questions existing approaches, views change as an opportunity, comfortable working in a dynamic and ambiguous environment.
• Building Relationships. Expresses ideas confidently and clearly, builds positive and constructive relationships with others, gets to know colleagues within their own team and supports them to ensure team goals are achieved.  

• The jobholder must have a thorough understanding of the security threat landscape, significant risks, technical developments and directions. 
• Strong interpersonal skills are essential, as the jobholder must be able to operate effectively at all levels within and outside the organisation.
• Demonstrable experience of working in a security engineering team
• Depth of experience in IT Technical Security, including time as a security senior practitioner
• Experience of security engineering systems and controls, including, vulnerability management, web content filtering, intrusion prevention, SIEM, email security,, DLP, NAC,  IAM, O365 and AWS
• Ability to harness the commitment and contribution of team members outside of direct span of control
• Excellent written and oral communication skills
• Ability to conduct research into security technical platforms and evaluate capabilities
• Ability to effectively prioritise and execute tasks in a high-pressure environment
• A Self Starter with the ability to lead and drive change through an organisation.
• Ability to build strong relationships and influence decisions with internal and external stakeholders.
• Establish mechanisms, behaviours and culture to encourage the protection of information and information systems
• Out of hours support required on a rota basis

• Masters in Information Security (MSc)
• Certified Information Systems Security Professional (CISSP)
• ITIL
• Vendor technology certifications e.g. AWS, SIEM, vulnerability management, web content filtering, intrusion prevention, email security managemen