Senior Cyber Security Engineer - 12 months FTC. Maternity Cover
TP ICAP Group is a world leading provider of market infrastructure. Our purpose is to provide clients with access to global financial and commodities markets, improving price discovery, liquidity, and distribution of data, through responsible and innovative solutions. Through our people and technology, we connect clients to superior liquidity and data solutions. The Group is home to a stable of premium brands. Collectively, TP ICAP is the largest interdealer broker in the world by revenue, the world’s leading provider of OTC data, and an award winning all-to-all trading platform. The Group operates from more than 60 offices in 27 countries. We are 5,300 people strong. We work as one to achieve our vision of being the world’s most trusted, innovative, liquidity and data solutions specialist.
Role Overview This role sits within the Global IT Security department and operates as a global team responsible for cyber security at TP ICAP. The Senior Cyber Security Engineer has the remit of proactively driving development of the cyber security capability in line with the evolving threat landscape. This includes; vulnerability management, access control, security platform engineering, detection and response activities. Coordinate with offensive security personnel to improve security posture based on Red/Purple team campaign findings. The role requires a self-starter, capable of taking the initiative either as part of a group or working independently. An ability to problem solve through solutions engineering to deliver defined objectives is essential. This requires ingenuity and resourcefulness to achieve cyber security orientated goals, that also facilitate our business needs. Personal career development is strongly supported, especially where directly applicable to ongoing workstreams. Overall, the Senior Cyber Security Engineer is required to have a willingness to learn and adapt, in order to accomplish outcomes that improve the overall cyber security posture of the group. Fundamental to this is the ability to exercise an offensive security mindset.
Role Responsibilities
* Maintain knowledge of current ATP TTPs
* Maintain knowledge of security tool landscape
* Vulnerability identification and remediation
* Penetration test report remediation
* Privileged access management
* Red/Purple offensive security activities
* Incident response and forensics
* Proactively identify opportunities for control improvements
* Develop strong relationships with stakeholders across the business
* Provide security tooling metrics
* Review and provide security input on architecture design briefs and technical solution documents
* Collaborate with solution architects to ensure security is embedded in system and cloud designs
* Define and validate security controls across cloud environments, particularly AWS
* Maintain awareness of cloud security architecture best practices and emerging technologies
* Support the development and implementation of secure-by-design principles across projects
* Security platform engineering and projects
Experience / Competences
Essential
* Experience implementing vulnerability management, SIEM, PAM, IDS/IPS, EDR, DLP, CNAPP and AV platforms
* Intermediate level knowledge of incident response processes for OS and network level events
* Comfortable with Windows and Linux operating systems
* Solid knowledge of networking, active directory and web applications
* Comfortable with at least one scripting or programming language such as Python, PowerShell, Bash, or Go
* Experience with reviewing and implementing Cloud security controls
* Experience reviewing architecture design documents and identifying security risks
* Strong understanding of AWS security services and controls (e.g., IAM, Guard Duty, SCPs, KMS)
* Familiarity with cloud-native security frameworks and reference architectures
Desired
* Incident response and forensics
* Offensive security experience
* Degree level accreditation or equivalent experience
* OSCP, CEH or SANS certification
* Experience with threat modelling and secure design principles
Band & level: Manager, 6
Location UK - 135 Bishopsgate - London
Seniority level
* Mid-Senior level
Employment type
* Full-time
Job function
* Information Technology
Location and role details are subject to change. This is a refined description based on the original posting and preserves the key responsibilities and qualifications.
#J-18808-Ljbffr