Overview
The purpose of the Security Engineer is to safeguard and enhance MM Flowers' technology infrastructure by designing, implementing, and continually improving robust security measures and operational controls. This role is instrumental in ensuring the secure delivery of business-critical projects and supporting the organisation's digital transformation efforts. By working closely with the IT team, vendors, and key stakeholders, the Security Engineer ensures that integrated and scalable security solutions are in place to protect data, drive operational efficiency, and support future growth in alignment with the company's strategic objectives. The position acts as a catalyst for operational excellence, ongoing improvement, and the effective use of security technologies to mitigate risks and uphold compliance.
Core Business Responsibilities
Responsible for overseeing the design, implementation, and ongoing enhancement of security infrastructure and operational security systems. This includes ensuring robust, secure, and scalable security frameworks, driving excellence in security operations through automation and reliability, maintaining high levels of security service availability and prompt incident response, supporting transformation through cloud security adoption and modernisation, and fostering a collaborative team culture that balances innovation with effective risk management and compliance. The role also involves working closely with IT teams, key security vendors, and business stakeholders to deliver critical security projects and support digital transformation initiatives whilst ensuring the organisation's security posture remains strong.
Qualifications
* Minimum of 3-5 years' experience in a security engineering or closely related IT security role
* Strong hands‑on knowledge of security technologies (such as firewalls, intrusion detection/prevention systems, endpoint protection, SIEM, vulnerability management tools, etc.)
* Experience administering and supporting security solutions within cloud and on‑premises environments
* Proven capability in responding to and investigating security incidents
* Familiarity with security frameworks and standards (e.g., ISO 27001, NIST, CIS Controls)
* Experience working with third‑party security vendors and service providers
* Ability to manage workload and prioritise multiple tasks across projects and operational support
* Effective communication skills, able to translate technical issues to non‑technical stakeholders
* Working knowledge of risk assessment and mitigation strategies
* Relevant industry certification (such as CompTIA Security+, SSCP, or equivalent) desirable
* Strong attention to detail and a methodical approach to troubleshooting
* Self‑motivated, proactive, and able to work independently as well as part of a team
* Curious and eager to keep up to date with the latest security threats and technologies
* Calm under pressure, able to respond effectively to urgent issues
* Logical thinker and effective problem solver
* Committed to maintaining high standards of security and compliance
* Excellent interpersonal and communication skills
#J-18808-Ljbffr