Network & Cyber Security Engineer
Role details
Job location
Tech stack
Job description
As a dedicated Network and Cyber Security Engineer, you will own the security of the infrastructure.
You will design and build the security function, including frameworks, tooling, and processes that protect all systems, data, and employees.
This is a hands-on role with the chance of further growth opportunities, including the potential to build and lead a Cyber Security / Networking team as the function develops further.
This is a great opportunity to work across a varied technical environment, working hand in hand with those with specialisms in engineering and operations
You will embed security thinking / focus across every level of the company.
Duties:
-
Support and play a key part in the design and implementing of the network and cyber security infrastructure, inc. Fortinet/FortiGate firewall and the hybrid Active Directory environment.
-
Utilising Microsoft 365 E5 licensing, adopting Microsoft Defender, Purview, Compliance, and wider security tooling
-
Responsible for managing and securing the clients on-site premises in terms of services and the infrastructure
-
Support the DevSecOps team, as the security guru providing guidance to support the integration of applications and security tooling across CI/CD pipelines.
-
Implement new security policies and maintain current policies, standards, and documentation in line with relevant frameworks (ISO27001, Cyber Essentials, GDPR and Defence Cyber Certification (DCC).
-
Lead vulnerability management, from scanning and assessment through to remediation.
Requirements
This role is subject to legal / security restrictions relating to Nationality & clearance eligibility. To be considered, applicants must be a British National under UK nationality law. Due to the nature of the tasking to allow for security vetting (UKSV) if not already obtained.
In this key role you will be experienced in securing hybrid environments, on-site infrastructures, cloud services (Microsoft 365) as well as Fortinet/FortiGate firewalls as well as enterprise networks security architecture.
Familiar to you will also be Microsoft security tooling, Defender suite, Purview, Compliance Centre, Entra ID, Conditional Access & Intune.
VMware vSphere virtualisation will be part of your skill set, SIEM platforms, IDS / IPS intrusion detection / prevention systems.
Applicants should also be familiar with DevSecOps, security compliance frameworks (ISO27001, Cyber Essentials + GDPR).
Any exposure to SC-200, MS-500, Fortinet NSE 4, CISM, CISSP, CEH or CREST would be a significant benefit however this isn't essential.
Any scripting in PowerShell, Python or Bash automation would be fantastic, however not a must have just desirable, as well as Docker or Kubernetes., * Used to securing hybrid environments combining on-premises infrastructure and cloud services, particularly Microsoft 365.
-
Experienced in Fortinet/FortiGate firewalls and enterprise network security architecture.
-
In-depth working knowledge of Microsoft security tooling, Defender suite, Purview, Compliance Centre, Entra ID, Conditional Access, and Intune.
-
Previous exposure to virtualisation platforms, particularly VMware vSphere and/or virtual desktop infrastructure.
-
A user of SIEM platforms and Intrusion Detection/Prevention Systems (IDS/IPS) - including configuration, tuning, alerting, and using these tools to maintain visibility and respond to threats across the environment.
-
Familiarity with DevSecOps practices and tooling.
-
Solid understanding of security compliance frameworks including ISO27001, Cyber Essentials, and GDPR, influencing colleagues at all levels.