Senior Security Platform Engineer

NTT Ltd.
Hemel Hempstead, United Kingdom
6 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Senior
Compensation
£ 77K

Job location

Hemel Hempstead, United Kingdom

Tech stack

Artificial Intelligence
Software System Penetration Testing
Computer Security
Computer Networks
Computer Forensics
Data Centers
DNS
Supervisory Control and Data Acquisition (SCADA)
Web Servers
Identity and Access Management
Intrusion Detection and Prevention
Network Forensics
Security Information and Event Management
Systems Integration
Data Logging
Malware
Firewalls (Computer Science)
Information Technology
Cybercrime
Patch Management
Service Stack
Vulnerability Analysis

Job description

  • We serve as a senior member of a 24/7 global cybersecurity team, providing leadership in IT/OT environments with expertise in ICS and SCADA systems.
  • We lead the administration and optimization of enterprise security platforms, including break-fix, patching, version upgrades, and integration with broader security ecosystems.
  • We direct complex security incident response efforts across endpoint protection, EDR, malware analysis, network forensics, and computer forensics to ensure rapid containment and root cause analysis.
  • We design and execute advanced vulnerability assessments using automated and manual techniques, and we prioritize remediation based on business risk and threat intelligence.
  • We continuously monitor threat intelligence feeds and security alerts to identify emerging risks and recommend countermeasures.
  • We interpret and synthesize threat reports to guide architectural improvements and validate the effectiveness of security controls.
  • We partner with cross-functional teams to develop and implement mitigation strategies, configuration baselines, and patch management frameworks.
  • We champion automation initiatives to streamline incident response, threat detection, and reporting workflows using security platforms and scripting.
  • We maintain and evolve our knowledge base by authoring and reviewing technical articles, playbooks, and SOPs.
  • We lead post-incident reviews, driving service recovery, documentation, and preventive measures across teams and vendors.
  • We provide expert guidance on specialized security domains and technologies to ensure effective resolution of escalated incidents.
  • We ensure meticulous incident logging and collaborate across internal teams, client IT environments, vendors, and carriers to expedite resolution.
  • We conduct advanced data correlation and threat hunting across network traffic, email logs, malware samples, web server logs, and DNS records to uncover stealthy threats.
  • We lead strategic security projects, mentor junior engineers, and contribute to the evolution of our security posture through innovation and thought leadership.

Technologies:

  • AI
  • Firewall
  • IAM
  • Network
  • Security
  • Web

Requirements

  • We require multiple years of experience working in IT and/or Security Operations Centers.
  • We prefer experience in a data center environment.
  • We require advanced expertise in architecting, implementing, and optimizing SIEM and security platforms across hybrid environments.
  • We require demonstrated leadership in ICS and SCADA security integration and monitoring within critical infrastructure.
  • We require deep knowledge of security architecture with hands-on experience designing and integrating multi-layered security solutions across diverse technology stacks.
  • We value a strategic customer engagement mindset with a proactive approach to anticipating security needs, influencing stakeholders, and driving continuous improvement.
  • We look for strong problem-solving skills with a track record of resolving complex security challenges independently and leading cross-functional teams through ambiguity.
  • We require exceptional attention to detail in high-stakes environments, especially in threat detection, incident response, and documentation.
  • We require advanced analytical skills with the ability to synthesize threat intelligence, correlate multi-source data, and produce actionable risk insights.
  • We require polished spoken and written communication skills in English.
  • We value proven leadership in global security teams, including collaboration, mentoring, and alignment between security operations and business objectives.
  • We require a bachelors degree or equivalent in Information Technology or a related field.
  • We prefer relevant security certifications such as CySA, PenTest, CCSP, GCIH, OSCP, CISM, or CISSP.
  • We consider relevant IT certifications such as CCNA, CCNP, RHCSA, GRID, GICSP, AZ-500, or SC-200 an advantage.
  • We require advanced experience with security technologies such as SIEM, PAM, IAM, PenTest, Threat Hunting, Firewall, and Proxy, preferably within a global IT services organization.

About the company

We are the third largest data center provider, operating more than 150 data centers across over 20 countries and regions. We combine local and global data center expertise with a connected platform of AI-ready data centers to help our clients scale their digital businesses seamlessly, anywhere and anytime. This role sits within our global data center cybersecurity organization and offers the opportunity to work on critical IT/OT security challenges in a highly collaborative, international environment.

Apply for this position