Information Security Engineer (Endpoint Protection)
Role details
Job location
Tech stack
Job description
-
Working pattern/flexible working: Based at our Bracknell Head Office with a flexible hybrid model (typically 1 day per week in the office, primarily Tuesdays, with ad-hoc visits as required by business needs), we support a healthy work-life balance
-
On-Call: Participate in a supportive on-call rota (approx. 1 week in 6), with flexibility for leave and personal commitments
Key Responsibilities
In this hands-on technical engineering role, you will:
- Own the Endpoint Protection Ecosystem: Act as the senior engineer for our Endpoint Detection and Response (EDR) and Vulnerability Management platforms, ensuring 100% agent coverage and maximum efficacy across various operating systems.
- Optimise SentinelOne: Lead the configuration, policy tuning, and architectural evolution of SentinelOne EDR to proactively block sophisticated threats and ransomware.
- Engineering for Defence: Develop and deploy automated workflows for endpoint isolation, threat remediation, and health checks to ensure our critical security tooling remains resilient.
- Strategic Delivery: Drive the roadmap for security tool deployments, prioritising Endpoint Security while supporting integrated protections across Cloud and SaaS environments.
- Vulnerability & Hygiene: Leverage tools like Rapid7 and Google SecOps (Chronicle) to identify endpoint weaknesses and correlate telemetry for a unified view of our security posture.
- Collaborative Security: Partner with Infrastructure and DevOps teams to bake endpoint protection into the hardware lifecycle and standard builds., Our BAME Network supports Black, Asian, and Minority Ethnic Partners, celebrate their contributions and create a more inclusive workplace.
Faith & Belief
FAB (Faith & Belief) is aimed at educating, celebrating and increasing awareness of all faiths and beliefs.
Gender Equality
Promoting Gender equality, empowering Partners to overcome barriers and be more involved in topics outside of their day job.
Linkages
Our intergenerational or age network aiming to build awareness of the benefits and opportunities of an intergenerational workforce.
Pride
Our first network that we developed. Designed to support the LGBTQ+ community and their allies.
Working Parents
Our Working Parents' Network supports and inspires working parents throughout their parenting journey.
Care Experience
Providing a safe and supportive community for Partners with experience in the care system.
Carers Network
The network aims to raise awareness and support Partners who are carers, and their allies.
Ability
Championing workplace disability inclusion by creating a supportive environment and offering peer communities for those with diverse needs.
Unity
Our BAME Network supports Black, Asian, and Minority Ethnic Partners, celebrate their contributions and create a more inclusive workplace.
Faith & Belief
FAB (Faith & Belief) is aimed at educating, celebrating and increasing awareness of all faiths and beliefs.
Gender Equality
Promoting Gender equality, empowering Partners to overcome barriers and be more involved in topics outside of their day job.
Linkages
Our intergenerational or age network aiming to build awareness of the benefits and opportunities of an intergenerational workforce.
Pride
Our first network that we developed. Designed to support the LGBTQ+ community and their allies.
Working Parents
Our Working Parents' Network supports and inspires working parents throughout their parenting journey.
Care Experience
Providing a safe and supportive community for Partners with experience in the care system.
Carers Network
The network aims to raise awareness and support Partners who are carers, and their allies.
Did you know?
The Chairman of the Partnership used to keep their nominated successor written in a signed envelope in their safe!
Requirements
- Extensive proven Security Engineering expertise in at least one of these core areas:
- Endpoint Security: Endpoint Detection and Response, management of platform rules, supporting agents, and service improvements
- Vulnerability Scanning: Configuration and management of Endpoint, Network, and Web App scanning. Maintaining scanning infrastructure
-
Proven track record of successful agile delivery (Scrum or Kanban)
-
Strong collaboration skills working with development, operations, and infrastructure teams within a security context
-
In-depth working knowledge of security best practices and frameworks (e.g. Mitre ATT&CK, NIST)
Desirable skills/experience you may have
-
Experience with SIEM tooling and detection development (Google SecOps/Chronicle proficiency is of specific benefit)
-
Experience securing Google Cloud environments, utilising tools such as Google Security Command Center or AWS Security Hub
-
Relevant Information Security certifications (e.g. CISSP) or a related degree
-
Email Security: e.g. Secure Email Gateways, Phishing Protection
Benefits & conditions
Leisure Learning
Enjoy learning a new skill or hobby even more by claiming up to £200 towards certain tutored courses.
(Applies to courses which you pay for in advance yourself).
PARTNER DISCOUNT
25% off at John Lewis and 20% at Waitrose. We knew you'd like this one!
(some exclusions apply). (Partner discount is only available following successful completion of your 90-day Earning Membership period once you have started).
Clubs & Societies
From arts & crafts to fishing, from skiing to running, we have so many clubs and societies bringing Partners with shared interests together.
HOLIDAY & LEAVE
Enjoy a generous holiday provision. Plenty of time for some rest and relaxation.
(The amount of holiday you'll get depends on your role and working hours. It increases over time).
PENSION & LIFE ASSURANCE
Secure your future with our comprehensive pension scheme and life assurance.
