Job Description
Job Title: Security Engineer
Location: Guildford, 5days/week in the office
Job Type: Permanent, Full Time
Salary: £65k
SH1011
The Opportunity
We are partnered with a Law firm, seeking an Infrastructure Engineer with a Security Focus to join the newly formed Cyber team. This role will involve supporting the implementation of the security strategy and assisting in building a secure platform, collaborating closely with the Platform and Infrastructure teams.
The ideal candidate will have prior experience in products like Microsoft Defender and Sentinel, preferably within a SOC environment. This role entails technology implementation, configuration, and support, offering significant opportunities for career growth and development as we continue to deliver innovative solutions to support their ambitious growth plans.
Duties and Responsibilities
As they transition to a more secure cloud-centric service, you will be part of the team responsible for developing the firm’s Cyber Security Plans, policies, and processes to adapt to the evolving landscape, covering Microsoft 365, Azure, Microsoft Intune, and supporting SaaS technologies.
• Serve as the primary technical resource for supporting and enhancing Microsoft Defender for Apps, Cloud, and Endpoint, Microsoft Sentinel, and Azure Firewall.
• Experience in secure configuration and management of Windows 11, Apple iOS, and Android devices using Microsoft Intune.
• Solid understanding of Microsoft Azure Landing Zones, including Azure Policy, Backup, and Monitor, to support platform expansion.
• Proficiency in hardening Windows Server, Windows 11, and Active Directory using CIS benchmarks.
• Beneficial experience in securing VDI environments such as Azure Virtual Desktop.
• Conduct regular security assessments, vulnerability testing, and penetration testing, recommending appropriate countermeasures.
• Develop and implement Security as Code practices.
• Assist in securing data platforms, including Data Bricks, Azure SQL, and other in-house developed apps/plugins.
• Collaborate on implementing internal SIEM using Sentinel and work towards establishing an internal SOC.
• Support the Infrastructure team in configuring firewalls securely and managing Fortinet FortiAnalyzer.
• Provide guidance to Infrastructure and Product teams on securing Microsoft 365 and Azure cloud services.
• Establish and manage SIEM and SOAR capabilities using Azure Logic Apps or equivalents.
• Enhance the usage and support of Entra ID (previously Azure AD) for IAM, Identity Governance, and PIM.
• Document security processes, tool configurations, and security service delivery/operation.
• Assist the Infrastructure team in migrating external services to SSO and integrating other services with security tools.
• Support the organization in achieving and maintaining Cyber Essentials Plus and ISO 27001 certification and conducting threat modeling activities.
• Collaborate with external third-party suppliers to enhance cybersecurity capabilities, enabling 24x7 SOC capability.
Skills and Experience
We welcome applicants with diverse backgrounds and encourage those who may not meet all criteria but possess relevant skills.
• Hands-on experience with implementing and maintaining Microsoft Sentinel.
• Hands-on experience with implementing and maintaining Microsoft Defender suite.
• Experience with enhancing security in Azure Landing Zones (e.g., Key Vault, NSGs, WAF).
• Experience with Microsoft Entra ID, including identity governance.
• Proficiency in using SOAR tooling, automating security operations, and policy as code.
• Ideally, experience in securing GitHub or similar platforms.
• Ideally, experience in securing data platforms (e.g., Databricks, Snowflake).
• Experience in securing Kubernetes (ideally AKS) and container security.
• Knowledge of Threat Modelling and relevant frameworks such as ISO 27001, Cyber Essentials Plus, and CIS.
• Proficiency in scripting languages such as Python, PowerShell, and KQL.
• Experience with Terraform or Bicep would be advantageous.
• Desire to work in a fast-paced, small team environment.
• Relevant certifications such as Microsoft (MS-500, AZ-500, AZ-700, SC-200, SC-300), CompTIA Security+ and Cloud+, Cloud Security Alliance CCSK, ISC2 CCSP.
Benefits
• Private medical coverage
• Life assurance
• Pension plan via NEST
• Cycle to work scheme
• Onsite amenities including free breakfast, lunch, snacks, and drinks
• Free onsite gym with access to a Personal Trainer
• Employee Assistance Programme
• Generous annual leave and Christmas closure pay
• Occupational Health support
• Various free company events