Eligibility and Clearance
This role is subject to legal / security restrictions relating to Nationality & clearance eligibility. To be considered, applicants must be a British National under UK nationality law. Due to the nature of the tasking to allow for security vetting (UKSV) if not already obtained.
Key Responsibilities
* Support and play a key part in the design and implementation of the network and cyber security infrastructure, including Fortinet/FortiGate firewall and the hybrid Active Directory environment.
* Utilising Microsoft 365 E5 licensing, adopting Microsoft Defender, Purview, Compliance, and wider security tooling.
* Responsible for managing and securing the client’s on-site premises in terms of services and the infrastructure.
* Support the DevSecOps team as the security guru providing guidance to support the integration of applications and security tooling across CI/CD pipelines.
* Implement new security policies and maintain current policies, standards, and documentation in line with relevant frameworks (ISO27001, Cyber Essentials, GDPR and Defence Cyber Certification (DCC)).
* Lead vulnerability management, from scanning and assessment through to remediation.
* Own the security of the infrastructure.
* Design and build the security function, including frameworks, tooling, and processes that protect all systems, data, and employees.
* Embed security thinking / focus across every level of the company.
Required Skills and Qualifications
* Experience securing hybrid environments combining on-premises infrastructure and cloud services, particularly Microsoft 365.
* Experience in Fortinet/FortiGate firewalls and enterprise network security architecture.
* In-depth working knowledge of Microsoft security tooling, Defender suite, Purview, Compliance Centre, Entra ID, Conditional Access, and Intune.
* Previous exposure to virtualisation platforms, particularly VMware vSphere and/or virtual desktop infrastructure.
* Experience using SIEM platforms and Intrusion Detection/Prevention Systems (IDS/IPS) – including configuration, tuning, alerting, and using these tools to maintain visibility and respond to threats across the environment.
* Familiarity with DevSecOps practices and tooling.
* Solid understanding of security compliance frameworks including ISO27001, Cyber Essentials, and GDPR, influencing colleagues at all levels.
* Exposure to SC-200, MS-500, Fortinet NSE 4, CISM, CISSP, CEH or CREST is a significant benefit but not essential.
* Experience or familiarity with scripting in PowerShell, Python or Bash automation, Docker or Kubernetes (desired).
Employee Benefits
32 days holiday (can be 35 depending when Xmas falls, at the company’s discretion, not a definitive), Pension 5% matched, Private health insurance & EAP.
Location & Travel
This role is commutable from Lincoln, Newark, Grantham, Gainsborough, Sleaford, Spalding, Boston, Nottingham, Rotherham, Sheffield, Doncaster, Scunthorpe, Grimsby & Hull. The client is open to those seeking to relocate to one of these listed areas.
Suitable Roles
This position may suit someone working as an Information Security Engineer, Information Assurance Engineer, Network Security Administrator, IT Security Architect, Security Systems Engineer, Security Systems Manager, Cloud Network Engineer / Cloud Security Engineer or IAS/OT Cyber Security Engineer if carrying out the same duties or most of the same duties listed above.
#J-18808-Ljbffr