Security Engineer

This is a hybrid role providing security engineering and architecture that will help shape the security capabilities at Control Risks. They will primarily be responsible for design and implementation of IT Security solutions for protecting and identifying cyber threats, bugs, malware and hacking attempts across the Companies networks, Azure and Microsoft security solutions.
This role will suit someone with several years of Security experience that has been building strong security capabilities within an Azure environment that can be adopted by the entire business.
The role will work closely with our Senior Security Engineers and Architects in supporting the delivering, maintenance of security solutions as well as security incident response.

• Develop and maintain High- and Low-Level design documents including Reference Architectures, Security Configuration Standards and Solution Diagrams;
• Analyse business processes, environments and applications in order to identify areas of security risk and develop secure controls and solutions to address them;
• Consult with application and infrastructure development projects to build security into broader enterprise applications and processes;
• Develop, communicate, and deploy Enterprise Architecture processes, reference architectures, technical standards/strategies and blueprints and patterns.
• Engaging directly with application development, application support, infrastructure and security teams as part of analysis and remediation of identified risks, vulnerabilities and issues;
• Monitoring security portals and information feeds, responding to security events and escalating incidents where required;
• Aiding with ensuring that security policies and best practice are followed within IT and the business;
• Coordination of penetration and vulnerability testing across company systems and networks;
• Help provide security metrics and KPIs to the Security leadership team on a regular basis;
• Review of security related published articles/bulletins/notifications;
• Assisting with the creation of IT Security documentation, policies and standard operating procedures;
• Active participation in implementation of new security focused projects;
• Periodic out of hours on call for escalation may be required after an initial period.

Requirements

• 3+ years of experience and technical depth in one (or more) of the following technology areas: Data Security, Infrastructure Security, Endpoint/Platform Security, Security Analytics, Automated configuration management, Automated application deployment, and Security testing or compliance frameworks
• Advanced expertise in Cybersecurity organization practices, operations, risk management processes, principles, architectural requirements, engineering and threats and vulnerabilities, including incident response methodologies, tactics and strategy to protect, detect, respond and recover from attacks
• Strategic thinking and passion for business strategy and business processes
• Fluency in architecture and design across all systems
• Expertise in application, data, and infrastructure architecture disciplines
• Experience in risk and risk control compliance
• Knowledge of applying CIS benchmark policies in Azure & O365
• Experience with Security frameworks, ISO 27001, Cyber Essentials, NIST, PCI
• Knowledge of Intrusion detection/prevention systems (IDS/IPS/WAF) and vulnerability assessment tools (Nessus/Tenable.io)
• Experience of investigating security issues/incidents