£44000 - £45000 per annum
2 months ago
I am looking for a Network/Information Security Engineer, you will focus on implementing IT Security best practices for a major project and its requirement for my client, based in Fareham, you must have SC clearance or be eligible to obtain.
This role requires proven experience with security telemetry, security intelligence, anomaly hunting and incident response. You must leverage intuition, security knowledge and use a broad of array of tools and advanced security techniques to help us uncover and stay alert to malicious activity.
*You will define and implement the SIEM solution into a critical production environment, ensuring all security elements are considered and addressed.
*You will define and implement the Vulnerability scanner solution in the production environment.
*You will perform both internal and external security audits.
*Communicate clearly audit findings and recommendations to the local CISO.
*Ensure that audit recommendations are properly implemented.
*You will monitor all implementation processes for various security systems and ensure compliance to policies and procedures.
*Collaborate with Information Technology, Development and business team members to provide effective solutions.
*You will keep up to date on current cyber security developments, discuss trade-offs, think about context and understand what threat modelling is.
*You will monitor security access, conduct security assessments through vulnerability testing and risk analysis.
*You will oversee third party and customer internal and external audit programmes for logical security audits.
*Conduct audits/reviews of information system environments in line with the agreed timetable or as directed.
*You will identify high-risk security issues associated with the information systems environments and escalate to UK Security Manager as required.
*You will investigate IT related complaints / incidents in conjunction with the Security Manager, local Security Officers and/or Departmental Managers
*Knowledge of TCP/IP and related network protocols: knowledge of standard network protocols like TCP, ARP, ICMP, DHCP, DNS, HTTPS, SNMP etc., and accompanying protocol/packet analysis/manipulation tools.
*Understanding of DLP/IDS/IPS/Firewall technologies, ability to construct custom signatures and investigate
*A lead auditor for CISA, CISM and ISO 27001. CISSP certification is also desirable.
*3 years' + IT Security experience, ideally in a large enterprise environment. Development / Configuration experience with any industry leading SIEM platform. Experience performing technical analysis involving security event data and evaluating malicious activity.
*Solid experience in ISO/IEC 27001:2013 framework. Experience of performing Penetration testing is highly desirable.
More information available at request, no SC clearance eligibility need not apply
In accordance with the Equality Act 2010, if you require an alternative form of application please click the following link: Flexible Application Process - https://www.theecsgroup.co.uk/work/flexible-application-process