Role
Role overview:
Our client is now seeking an experienced Cyber Security Engineer to join them on a permanent basis. This is a new and exciting role, so they are looking for someone who can make an immediate impact. The successful candidate will be enthusiastic and a quick learner with a desire to develop in a friendly and supportive company.
This role will suit someone who is confident in their abilities, looking to take the step up. Someone who is eager to further develop and proactively gets things done. They will fit well in this forward thinking and highly respected team. This is a great opportunity for someone to join an experienced team, whilst giving the opportunity to further develop their own experience, knowledge and skills.
You will be working on enhancing existing and continually developing security. This will be achieved by working and collaborating with cross-functional teams to provide guidance on security best practices.
Main task and responsibilities:
- To engineer, implement and monitor security measures for the protection of computer systems, networks and information.
- Prepare and document standard operating procedures and protocols.
- Proactively identify and reduce security risks.
- Provide guidance on: architecture, authentication and system security.
- Develop technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks.
- Participate in the security aspect of the development of the companies applications.
- Identify security solutions and implement a multi-layered defence to protect the networks.
- Act as liaison and handle communications with independent and external vulnerability researchers and design appropriate mitigation strategies for reported vulnerabilities.
- Professionally handle communications with users, and developers and ensure clear communication on of technical issues.
Experience Required:
- Familiar with common security libraries, security controls, and common security flaws that apply to Microsoft and web-based applications.
- Ability to discover and patch Windows, SQL, XSS, CSRF, SSRF, authentication and authorization flaws, and other web-based security vulnerabilities (OWASP Top 10 and beyond).
- Hands on experience in security systems, including firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, content filtering, etc.
- Knowledge of common authentication technologies including OAuth, SAML, CAs, OTP/TOTP.
- Familiarity with web related technologies (Web applications, Web Services, Service Oriented Architectures) and of network/web related protocols.
- Experience with standard application security tools such as Nessus.
- Proven experience of responding to network intrusions and be familiar with performing forensic investigations.
Behaviours:
- Someone who is passionate about cyber security operations and a desire to continuously learn and use new technologies.
- Role may suit someone ready to step up to the next level.
- Strong interpersonal skills coupled with the ability to communicate effectively.
- Demonstrable teamwork skills and resourcefulness.
- Possess self-drive to keep moving things forward even in the face of ambiguity and imperfect knowledge.
- Build relationships with all staff to promote security throughout the business.
- Strong sense of ownership, urgency, and drive.
- Sharp analytical abilities and proven design skills.
Further info:
- Competitive salary & flex bens
- London – remote/flexible whilst restrictions in place.
To apply:
Please either register your CV and complete the information fields requested or send your CV to referencing WDA155 and your current salary.