Cyber Security Engineer

Charles Russell Speechlys
Charing Cross, United Kingdom
2 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English

Job location

Charing Cross, United Kingdom

Tech stack

Microsoft Active Directory
Computer Security
Intrusion Detection Systems
Virtual Private Networks (VPN)
Information Systems Security Architecture Professional
PCI Data Security Standards
Security Information and Event Management
Identity Services Engine
Firewalls (Computer Science)
Microsoft InTune
Cybercrime
CIS Benchmarks
Ddos

Job description

The Cyber Security Engineer will be a vital member of our newly established SecOps team, reporting directly to the Infrastructure Platforms Manager. This position is crucial in implementing and maintaining robust security measures across our infrastructure, as well as managing incident response. The role involves developing, implementing, and sustaining security solutions designed to protect our systems against constantly evolving cyber threats, with a focus on transitioning to a zero-trust operating model. The Cyber Security Engineer will spearhead key security initiatives in collaboration with the Lead Cyber Security Engineer and playing a pivotal role in enhancing our overall security posture. Additionally, the role will support the firm in its pursuit of ISO 27001 certification and the implementation of CIS controls. Roles and Responsibilities

  • Maintenance of the CrowdStrike platform, including configuring EDR policies, tuning SIEM rules, and optimizing the system for performance
  • Work with the network engineers to implement posture management i.e. ICE/NAC segmentation/lateral movement control and firewalls
  • Proactive collaboration with InfoSec to align CrowdStrike and other key security platforms with our security strategy and policies
  • Leading or participating in incident response efforts, conducting root cause analysis, and developing runbooks for incident handling
  • Monitoring for security threats, analysing alerts, and responding to incidents using CrowdStrike and other security tools. Conduct vulnerability scans and support remediation and risk mitigation efforts
  • Oversee WAF, DDoS, VPN, and perimeter firewalls
  • Work with Endpoints team to administer MFA, SSO, PAM, MDM/MAM, and Conditional Access
  • Maintain security certificates, encryption keys, and IDS/IPS systems
  • Collaborate with third-party penetration testers to identify, prioritize, and remediate security vulnerabilities
  • Creating detailed reports on detected threats, incidents, and response actions, as well as documenting configurations, processes, and runbooks.
  • Keeping well-informed of the latest cybersecurity trends, emerging threats, and updates
  • Comply with all relevant legal and regulatory obligations including the Solicitors Regulation Authority (SRA) Standards and Regulations, and Principles.

Requirements

Experience in the following technologies:

  • CrowdStrike EDR
  • Cisco ISE
  • Mimecast
  • Tessian or equivalent email DLP
  • Intune, Entra ID, Active Directory
  • Palo Alto Firewalls, WAF, Menlo Security
  • Deep understanding of Security Frameworks & Compliance PCI-DSS, ISO 27001, NIST, CIS
  • Networking

Person Specification Qualifications including:

  • Certified Information Systems Security Professional - CISSP
  • Crest Practitioner Security Analyst - CPSA
  • Palo Alto Network Certified Security Operations Professional, * Working together
  • Integrity and respect
  • Inclusive
  • Personal impact and growth
  • Driving high standards
  • Commercial mindset
  • Client - centric
  • Responsible Business

Hybrid working - We adopt a hybrid and flexible working approach, dependent on the requirements of the role and subject to manager approval.

Apply for this position