The Infrastructure Security Engineer is responsible for supporting and enhancing the firm's security posture across infrastructure, endpoints, identity, and cloud services. The role focuses on the day-to-day management of security platforms, monitoring and responding to threats, and ensuring security controls are effectively implemented across the estate. This is a mid-level position, working closely with the Senior Infrastructure Engineer to embed security best practices into infrastructure operations.
Responsibilities
* Administer, maintain, and optimise security platforms including Darktrace, CrowdStrike, Pentera, Microsoft 365 Security (including Purview), Mimecast, and Fortra (CASB/SASE).
* Monitor and triage security alerts and resolve or escale as required.
* Assist in tuning detection rules to improve alert quality and reduce noise.
* Support security configuration across Active Directory, Entra ID, and Entra MFA.
* Support Intune compliance and configuration.
* Maintain mobile security using Lookout for iOS fleet.
* Support Jamf for Apple device data monitoring and security enforcement.
* Act as key contact for the XDR provider (Reliance Cyber).
* Support investigation and coordination of security incidents.
* Assist with root‑cause analysis and remediation activities, contributing to infrastructure changes ensuring security requirements are met.
* Support audits and security reviews.
* Assist in aligning systems with policies and regulatory requirements.
* Contribute to identifying and mitigating risks.
* Maintain documentation of systems and processes.
* Suggest improvements to tools and processes.
* Stay up to date with threats and best practices.
* Work closely with IT teams to support secure operations.
* Communicate risks and recommendations clearly.
* Promote security awareness across the firm.
Technical Skills
* Experience with EDR/XDR platforms
* Microsoft 365 Security, Entra ID, Intune and MFA
* Understanding of CASB/SASE platforms (e.g. Fortra)
* Email security tools such as Mimecast
* Mobile/device security tools including Intune, Lookout and Jamf (monitoring)
* Infrastructure knowledge across servers, networking and Azure
Experience
* Experience in infrastructure or security‑focused IT role
* Experience with managed security providers or SOC/XDR services
* Exposure to monitoring and incident response
Benefits
* Salary and bonus structure with a simple percentage bonus across the firm.
* Flexible benefits package kept under regular review and designed with the wellbeing of staff and families.
Diversity & Inclusion
At Bristows we are committed to championing equality, diversity and inclusion for all, and we are a proud signatory of the Law Society's Diversity and Inclusion Charter.
Working Arrangement
The firm has introduced a Remote Working Policy which enables staff to work flexibly, with an expectation of spending more time in the office than out of it, typically three days a week for full‑time staff.
#J-18808-Ljbffr