Security Engineer

This role will primarily be responsible for protecting and identifying cyber threats, bugs, malware and hacking attempts across the Companies networks, Azure and Microsoft security solutions.

This role will suit someone with several years of IT Security experience with a good grounding in endpoint, network hardware, virtualization, network topologies, server support and Azure services and who has a comprehensive understanding of the many facets of a security engineering role.

The Security Engineer will work closely with our Senior Security Engineers in supporting the delivering, maintenance of security solutions as well as security incident response.

General Duties and Responsibilities

- Monitoring Network security portals and information feeds, responding to security events and escalating incidents where required;

- Act as the initial analytical reference point for identifying and then quantifying the nature and extent of security incidents and offer initial professional advice relating to possible business impact;

- Contribute to and execute the network and security technology roadmaps ensuring alignment with business needs;

- Responsible for deploying ruleset and policy changes on security controls, following a change management process;

- Conduct patching, rule and account reviews;

- Conduct Third party software evaluations prior to entering the corporate network;

- Ensure account policies are consistent throughout all the environments;

- Engaging directly with application development, application support, infrastructure and security teams as part of analysis and remediation of identified risks, vulnerabilities and issues;

- Review of security related published articles/bulletins/notifications;

- Assisting with the creation of IT Security documentation, policies and standard operating procedures;

- Active participation in implementation of new security focused projects;

- Periodic out of hours on call for escalation may be required after an initial period.

Collaboration and Effective Communication

- Communicate regularly with the Service Delivery managers and Service Delivery team members;

- Ensure that the IT Security documentation is maintained and updated regularly as required;

Requirements

Essential

- Experience of working in a diverse Global Company;
- Experience in Data Loss Prevention (DLP) and Information Classification tools, O365 DLP and Azure Information Protection preferred.
- Understanding of key network and infrastructure security solutions such as firewalls, SD-WAN, WAF, DDoS protection IPS, Web Proxy, etc.
- Excellent knowledge of security solutions and technologies including Network Firewalls, proxy technologies, EDR, SIEM (Sentinel);
- Understanding of SASE solutions and cloud-based service delivery of traditional security controls (e.g. content filtering, firewall)
- Knowledge of Intrusion detection/prevention systems (IDS/IPS/WAF) and vulnerability assessment tools (Nessus/Tenable.io/Qualys);
- Excellent knowledge of Computer Networking and IT Security and strong endpoint and networks troubleshooting skills;
- Excellent knowledge of different threat scenarios, incident response and remediation techniques;

Qualifications and specialist skills

- Microsoft Security qualifications AZ-500, SC-200, SC-400, SC-300
- Other cloud security qualifications desirable such as CCSP or CCSK
- Good communication skills and ability to articulate subjects clearly;
- Proven analytical and problem-solving skills;
- Strong documentation skills;
- Organized, methodical and self-motivated;
- Keeping abreast of industry trends and security technologies.

Benefits

• Control Risks offers a competitively positioned compensation and benefits package that is transparent and summarised in the full job offer.
• We operate a discretionary global bonus scheme that incentivises, and rewards individuals based on company and individual performance.
• Control Risks supports hybrid working arrangements, wherever possible, that emphasise the value of in-person time together - in the office and with our clients - while continuing to support flexible and remote working.

As an equal opportunities employer, we encourage suitably qualified applicants from a wide range of backgrounds to apply and join us and are fully committed to equal treatment, free from discrimination, of all candidates throughout our recruitment process.

Please be informed that only shortlisted candidates will be notified.