Senior Security Engineer

Overview

As a Senior Security Engineer for Link Group you will be part of the Global Security Architecture and Engineering team, helping to drive the Cybersecurity team and the business in current information security challenges across security technology control assessment, design, configuration, integration, documentation and support.

This role is based from our Leeds city centre office on a hybrid working approach; working from home with a fortnightly office presence. As team members and colleagues are based in our APAC region, it's likely that you will be required to participate in out of standard hours calls on a weekly basis. 

What you’ll be doing:

• Create and maintain global standards, ensuring a consistent security approach
• Design and implement solutions to ensure that they deliver business objectives securely
• Uplift, drive and deliver security capabilities within the group
• Act as a technical point of escalation related to security controls and concepts
• Deliver security solution designs and implementation direction in a fast-paced environment solutions
• Evaluate, architect, implement, and support security tools and services for Link Group rapidly emerging Cloud based hosting model and help execute the global Information Security strategy / Centre of Excellence
• Lead technical change for cybersecurity best practice adoption within projects
• Develop security solutions architecture aligned to organisational strategy and industry best practice
• Provide guidance to key stakeholders on best practice architecture practices
• Maintaining awareness of security trends and the global threat landscape
• Advance security computing knowledge & understanding (including cloud security) across the wider organisation
• Continue to develop subject matter expertise in designated area of specialisation. This includes performing research and keeping abreast of trends and best practice techniques and controls
• Provide leadership and mentorship to junior team members including knowledge transfer
• Demonstrate ‘by example’ professional and ethical behaviour by ensuring compliance with external legislation, internal operating policies, and procedures relevant to the position
• Policy and configuration review, approval and implementation of changes to DLP, WAF, DAM, endpoint, and other security products

What we’re looking for:
 

• Strong understanding of Application Security concepts and best practices including agile methodologies and coding languages
• Experience in DevSecOps transformation
• Experience in Security Operations, Security Engineer or similar technical role
• Experience with successful and unsuccessful project implementations
• Knowledge of integration concepts, patterns and technologies
• Extensive experience across infrastructure domains (network, compute and storage)
• Experience across Cloud and infrastructure components (server, storage, network, data, and applications) to deliver end to end Cloud Infrastructure architectures and designs. Azure experience preferred.
• Experience performing threat modelling and value assessment techniques to assess controls and provide architectural decisions
• Experience working with Cloud Security, Cyber security (Malware, penetration testing, forensics, incident response), endpoint Security, Security Incident and Event management, Data Protection, network Security, Identity & Access Management
• Ability to identify critical & high priority issues and resolve and/or escalate where required
• Assist project teams with technical decisions and implementation
• Experience in architecting, designing, and building Security Architecture Frameworks
• Experience in a hands-on implementation capacity on major projects
• Experience implementing medium to large-scale distributed applications
• You have strong skills in Zscaler, CASB, OKTA, Office 365 and Active Directory, Azure AD, Citrix Azure (Cloud) and other Microsoft technologies
• You have a working knowledge of Agile and Product Centric principles, product management, scheduling and a strong customer focus
• Strong communication, consulting, and negotiation skills
• CISM, SSCP, CCSP, CRISC is not essential but highly desirable

About Link Group

Link Group works in partnership internationally with almost 7,000 clients including asset managers and investors, business managers, asset owners, trustees, issuers and borrowers.  We provide the infrastructure through which assets are secured or deployed in both regulated and unregulated markets.
 

What’s in it for you?

• A  competitive salary plus benefits
• 26 days holiday to start, plus Bank Holidays, one annual Wellbeing Day and one annual Volunteering Day, with the opportunity to buy extra leave
• Company matched pension scheme, private medical cover, life assurance, a Cycle2Work scheme, fully paid maternity, adoption and shared parental leave, paternity pay of two weeks…and plenty more
• Voluntary benefits designed to suit your lifestyle – from discounts on retail and socialising, to health & wellbeing, travel and technology
• You’ll get the chance to follow your chosen career path anywhere in Link Group. You’ll be joining a network of experienced, innovative and dedicated individuals across multiple teams and countries. There are countless opportunities to learn new skills and develop in your career and we’ll provide the support you need to do just that.

We’re an equal opportunity employer, which means we’ll consider all suitably qualified applicants regardless of gender identity or expression, ethnic origin, nationality, religion or beliefs, age, sexual orientation, disability status or any other protected characteristic. We recruit and develop our people based on merit and their passion and we’re committed to creating an inclusive environment for all employees.

Link Group is a leading fund administration and share registry specialist. We are a market leading provider of technology-enabled administration solutions, continually developing our offerings to expand with our clients' needs. Since our inception, Link Group has been entrusted by clients to handle sensitive data in a secure and confidential manner. Our core businesses of fund administration and securities registration are complemented by our expertise in digital solutions and data analytics.