Join to apply for the IT Security Engineer role at Sopra Steria
Overview
Are you passionate about protecting critical infrastructure and driving proactive security? We’re looking for an individual who’s ready to take ownership of our vulnerability management ecosystem and lead the charge in deploying and optimizing Tenable Nessus and Tenable.SC platforms. This is a mission-critical opportunity to shape how we defend our environments, empower our teams, and meet the highest standards of compliance and resilience. You’ll be the go-to expert, collaborating across departments to ensure our systems are secure, our risks are visible, and our responses are swift.
What you will be doing
* Lead deployment, configuration, and lifecycle management of Tenable Nessus and Tenable.SC across varied environments.
* Design and execute vulnerability scanning strategies aligned with business priorities and risk appetite.
* Validate results, investigate anomalies, and coordinate remediation with infra, network, hosting, and app teams.
* Maintain gold-standard documentation (guides, SOPs, user manuals).
* Build tailored dashboards and reports to drive visibility and informed decision-making.
* Embed vulnerability management into IT, security, and compliance workflows and planning.
* Provide training and mentorship to foster security awareness and technical excellence.
* Ensure practices meet Cyber Essentials Plus and ISO 27001 requirements, supporting audits and certification.
* Identify gaps, implement enhancements, and drive automation for continuous improvement.
* Integrate Tenable tools with SIEM, CMDB, and ticketing systems to streamline workflows.
* Serve as SME in vulnerability management for incident response, risk assessments, and architecture reviews.
* Represent the function in cross-functional forums, steering committees, and client engagements.
* Oversee patching strategies to achieve high compliance with infra and application teams.
What you will bring
* Knowledge of deploying, configuring, and lifecycle managing Tenable Nessus and Tenable.SC across diverse infrastructure environments.
* Experience designing and executing vulnerability scanning strategies aligned with client priorities and risk appetite.
* Ability to make security recommendations based on market intelligence and new security threats.
* Experience validating scan results, investigating anomalies, and coordinating remediation with infrastructure, hosting, networks and applications teams.
* Working knowledge of developing and overseeing patching strategies to achieve high compliance monthly.
* Familiarity with ISO27001, GDPR and NIST.
* Certifications such as CISSP, CISM, CEH, SC-200, AZ-500.
Employment Type: Full-time
Location: Newport, Hybrid
Security Clearance Level: holding SC clearance or eligible for SC clearance
Salary: £37k-£41k dependent on experience
Benefits: 25 days annual leave with the option to buy additional days, health cash plan, life assurance, pension, and flexible benefits
We welcome applications from a diverse range of backgrounds and identities. We are committed to equality of opportunity and do not discriminate on the basis of race, religion, colour, gender, age, disability, sexual orientation or marital status. If you require any adjustments to the recruitment process, please let us know when applying. We participate in the Disability Confident scheme and are committed to offering an interview to any candidate with a disability who meets the minimum criteria for the role.
#J-18808-Ljbffr