Senior Security Engineer Location: Manchester 5 days per week onsite Salary: £100,000 £140,000 benefits Clearance: Active SC clearance required as a minimum, with willingness to undergo DV clearance Senior Security Engineer required for a major secure programme in Manchester. This Senior Security Engineer role will suit an experienced Security Engineer, Infrastructure Security Engineer, Network Security Engineer, Platform Security Engineer, Cyber Security Engineer or DevSecOps Engineer with strong enterprise firewalling, secure infrastructure, Elastic / SIEM, public cloud security and hands-on security engineering experience. This is a senior, hands-on role working across firewalling, on-premise and cloud security, secure infrastructure, network security, workload segmentation, hardening, monitoring, incident response and security architecture. The environment is highly secure and regulated, with a strong focus on enterprise firewalling, Elastic / Elasticsearch, VMware-based infrastructure, Cisco, Palo Alto, Windows hardening and AWS / public cloud security. Benefits Salary between £100,000 £140,000 depending on experience Full employee benefits package Private healthcare Pension Major secure programme Senior technical role with strategic influence Opportunity to shape security across a critical platform High-security, high-impact environment The Role You will act as a key technical security point of contact across the platform, working closely with infrastructure, operations, engineering and leadership teams. The role requires someone comfortable operating at both strategic and hands-on level: able to advise on approach and direction, while remaining close to the technical detail. Responsibilities will include: Designing, configuring and improving security controls across secure infrastructure Working heavily across enterprise firewalling, firewall policy, network segmentation and workload segmentation Managing and hardening Palo Alto Networks firewalls, including Panorama, App-ID / User-ID, NAT, VPN and threat prevention Supporting Cisco security technologies, including ASA / FTD firewalls, ISE and secure routing / switching Working with VMware NSX / vDefend security controls, including distributed firewall policies and micro-segmentation Working with Elastic Stack / Elastic Security for logging, SIEM, monitoring, threat detection and dashboards Supporting AWS / public cloud security across secure and regulated environments Hardening Windows Server environments, Active Directory, Group Policy and endpoint configurations Implementing, auditing and remediating against CIS Benchmarks, STIGs and security hardening standards Supporting vulnerability management, incident response, root cause analysis and remediation planning Embedding security into DevSecOps / CI/CD practices, including automated security testing and policy-as-code Collaborating with vendors, auditors and internal teams in a high-security environment Mentoring engineers and helping promote a security-first culture Key Skills The successful Senior Security Engineer will ideally have experience across several of the following: Enterprise firewalling, firewall policy, firewall hardening and firewall management Palo Alto Networks, Panorama, GlobalProtect, threat prevention, NAT, VPN, App-ID / User-ID Cisco ASA, FTD, ISE, secure routing and switching Elastic Stack, Elasticsearch, Kibana, Beats, Logstash, Elastic Security, SIEM or security monitoring AWS security, public cloud security or secure cloud infrastructure VMware NSX, vDefend, distributed firewalling or micro-segmentation Security engineering within secure, regulated or high-compliance environments On-premise infrastructure security Network security, workload segmentation and zero-trust principles Windows Server hardening, Active Directory, Group Policy and endpoint security CIS Benchmarks, STIGs and practical hardening standards Vulnerability management, incident response and remediation DevSecOps, CI/CD security, automated security testing or policy-as-code TCP/IP, OSI model, routing, VPNs, IAM and encryption Clearance Requirements Active UK SC clearance is required as a minimum. Candidates must also be willing and able to undergo DV clearance due to the nature of the programme and end-client environment. What We Are Looking For This role would suit a senior hands-on security engineer, infrastructure security engineer, network security engineer, platform security engineer, cyber security engineer, DevSecOps engineer or security-focused infrastructure specialist. You will need to be comfortable working onsite in Manchester, operating in a high-security environment and taking responsibility for security across critical systems. This is not a passive monitoring role. It requires someone who can own, improve and shape security across a critical platform while remaining close to the technology. If you are an experienced Senior Security Engineer / Security Engineer with active SC clearance and strong experience across enterprise firewalling, secure infrastructure, Elastic / SIEM, VMware, Palo Alto, Cisco, Windows hardening and AWS / public cloud security, please apply for a confidential discussion. All the best, Charlie Syrett at Richmond Consulting Ltd