Job Description
Cyber Security Engineer- London/Hybrid- £70,000-£80,000
The Cyber Security Engineer will be a pivotal member of the company's Security Operations Group and the wider Information Security Group. The role plays a key part in protecting the company's technology and data assets from cyber threats and contributing to reducing cyber risk.
Responsibilities:
* Design, implement, and monitor security measures to protect technology & data assets.
* Identify and define security requirements for technology assets.
* Prepare and document standard operating procedures and protocols.
* Install, maintain, configure, and troubleshoot security platforms.
* Develop technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks.
* Participate in incident response efforts, including forensic examination of compromised systems.
* Author reports include assessment-based findings, outcomes, and propositions for further system security enhancement.
* Review information security tools and controls to ensure optimal efficiency and adherence to information security standards.
* Assist with information security risk assessment to identify exposures, assess mitigating controls, and recommend/implement action plans to minimize risk.
* Work with IT to investigate, resolve, and respond to all information security incidents.
* Monitor threat intelligence feeds and subscriptions for applicable threats to the firm.
* Adhere to confidentiality policy, code of ethics, other firm policies/procedures, and compliance policies/procedures.
* Research and assess potential threats, report issues, and assist with remediation activities.
* Collaborate with IT teams to remediate security vulnerabilities.
* Mentor junior security analysts and provide training sessions on best practices in information security.
* Conduct security assessments through vulnerability scanning, assessments, and risk analysis.
* Monitoring security telemetry data for unusual or suspicious activity.
Skills/ Experience:
* Bachelor's or master's degree in computer science, Information Systems, or a related field.
* A minimum of five years of experience in a related field.
* Professional security management certification, such as Certified Information Systems Security Professional (CISSP) or other similar credentials, is desirable.
* Proven work experience as a system security engineer or information security engineer.
* Strong knowledge of information security principles and practices.
* Experience in building and maintaining security systems.
* Hands-on experience in security systems, including firewalls, cloud security, intrusion detection systems, endpoint security, identity and access management, log management, content filtering, etc.
* Advanced knowledge of security platforms, threats, vulnerabilities and vulnerability management/remediation, identity and access management, network segmentation, encryption, network traffic, system hardening, and incident response.
* Knowledge of risk assessment tools, technologies, and methods.
* Experience designing secure networks, systems, and application architectures.
* Knowledge of current regulatory frameworks and guidance, compliance, security, and best practices related to information assurance, finance industry, and information technology.
* Knowledge of vendor-agnostic cloud security concepts.
* Knowledge of information security and standards, including but not limited to NIST CSF 2.0.
* Possess a results-oriented, high-energy, self-motivated attitude and a strong commitment to customer service.
* Strong interpersonal, organizational, oral, and written communication skills.
* Possess solid problem-solving and analytical skills.
* Self-motivated and able to work independently with minimal supervision or guidance.
Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.
We practice a diverse and inclusive recruitment process that ensures equal opportunity for all we work with, irrespective of race, sexual orientation, mental or physical disability, age or gender. As an organisation, we encourage applications from all backgrounds and will ensure measures are met when required, to allow a fair process throughout.
PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.