Location and Travel
You may be based at our Exchange Quay office in Salford, Manchester (M5 3EF) or at our Kirkby office in Liverpool (L33 7XW), and may need to travel between the two sites.
Role Overview
As an IT Security Engineer you will protect the organization’s information assets, design, implement and maintain robust security measures, and work closely with IT, risk management and compliance teams to shape and enforce security policies.
Benefits
* Competitive salary package reflecting your skills and experience
* Comprehensive pension scheme
* Generous annual leave entitlement plus bank holidays
* Opportunities for professional development and certifications
* Supportive and inclusive working environment focused on career growth
* Employee assistance programme and wellbeing initiatives
* Access to cutting‑edge technology and tools within a leading financial services firm
* On‑site parking
* Luxurious office environment in a superb location
* Competitive holiday allowance
* Comprehensive benefits and discounts package
* Healthcare scheme
* Life assurance
* Cycle2work scheme
* Additional benefits after probationary period
Key Responsibilities
* Application Security Engineering (AppSec)
* Secure Development Lifecycle (SDLC): Integrate security tools and processes into CI/CD pipelines (DevSecOps) to shift security left
* Vulnerability Management: Manage and execute Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) on proprietary applications
* Remediation & Guidance: Provide technical advice on vulnerability fixes and secure coding practices such as OWASP Top 10
* Threat Modelling: Conduct formal threat modelling exercises for new features and application architectures to identify and mitigate design flaws
* Systems Security Engineering & Configuration: Define, implement and audit secure configuration standards for all corporate systems (servers, cloud resources, critical databases) in line with CIS Benchmarks or equivalent
* Endpoint Security: Deploy, manage and optimise Endpoint Detection and Response (EDR) solutions and host‑based firewalls
* Identity & Access Management (IAM): Engineer and govern secure configuration of IAM services (MFA, SSO, PAM tools)
* Patch & Vulnerability Management: Oversee enterprise vulnerability scanning and coordinate remediation with IT Operations
* Network Security Engineering & Infrastructure
o Firewall Management: Design, implement and maintain complex rule sets and policies on Next‑Generation Firewall (NGFW) platforms, manage network segmentation, site‑to‑site VPNs, and secure remote access
o Intrusion Detection/Prevention (NIPS): Configure and tune NIPS and IDS to block malicious traffic and alert on policy breaches
o Security Tool Implementation: Research, deploy and operationalise new network and cloud security tooling, ensuring integration with our SIEM system
Qualifications & Experience
* Proven experience as a Security Engineer, preferably within the banking and financial services industry
* Strong understanding of network security protocols, encryption technologies and security frameworks
* Experience with security tools such as SIEM, IDS/IPS, firewalls, endpoint protection and vulnerability scanners
* Familiarity with regulations and standards including GDPR, PCI DSS, ISO 27001 and FCA compliance
* Relevant certifications advantageous (CISSP, CISM, CEH, CompTIA Security+)
* Excellent analytical and problem‑solving skills with a detail‑oriented mindset
* Strong communication skills, able to explain complex security concepts to non‑technical stakeholders
* Degree in Computer Science, Information Security or a related field preferred
Why Join Us?
Joining Phillips & Cohen Associates Ltd. means becoming part of a forward‑thinking organization that values security as a core part of our business success. You will work alongside passionate professionals dedicated to protecting our clients and assets in a challenging and rewarding environment.
Job Types: Full‑time, Permanent.
#J-18808-Ljbffr