The Role
We are seeking an experienced VMware Security Consultant to join the Extend Expert Team (EET). Where you will play a pivotal role in securing critical national infrastructure.
You will lead technical delivery across two primary workstreams: the deployment of Advanced Threat Protection (ATP) and the implementation of the broader VMware vDefend security suite.
Key Responsibilities
1. vDefend Firewall (DFW) Implementation
You will support the platform deployment for NSXi, focusing on the creation and migration of firewall policies. Your remit includes:
* Policy Architecture: Defining and scaling policy structures, including Macro (Common Services), Meso (Infrastructure), and Micro (Application) levels.
* Operational Design: Establishing the operating model, standardisation goals, and capacity management frameworks.
* Technical Integration: Implementing Identity Firewalls, logging, monitoring, and visibility metrics.
2. Advanced Threat Protection (ATP)
You will oversee the enablement and tuning of ATP features to ensure robust threat detection, including:
* Detection & Prevention: Enabling IPS/IDS, tuning malware prevention, and developing threat scenarios.
* Incident Analysis: Assisting with initial investigations using the attack lifecycle evidence chain.
* Maintenance: Managing product upgrades, patching, and the creation of custom operational dashboards.
Requirements
* Technical Expertise: Deep working knowledge of VMware NSX, vDefend, and ATP security features.
* Strategic Thinking: Ability to define operational metrics and scaling strategies for complex environments.
* Communication: Capable of working collaboratively within a multi-vendor environment (Prime Contractor and End Customer).
* Security Clearance: You must currently hold or be eligible to undergo Security Check (SC) clearance.
Why Join This Project?
This is an opportunity to work on a high-profile programme. You will be responsible for defining the security posture of a vital platform, ensuring long-term operational stability and resilience against sophisticated cyber threats.
This project will require on-site work in the London area on a weekly basis. The rest of the work will be conducted remotely.