Cyber Security Engineer

We are looking for an experienced Cyber Security Engineer to join our growing Security team on an initial 12 month fixed term contract.

About the role

The mission of the I&T Digital Security organisation is to deliver an efficient and effective service that has scalability and flexibility to support the demands of the business. We are looking for a professional Cyber Security Engineer who analyses, designs, and implements security solutions for different networks.

The Cyber Security Engineer is a member of a global team that is expected to support all business activities across the business divisions. The ability to build close working relationships with I&T team members, local engineering and business contacts is a critical requirement.

As a Cyber Security Engineer, you will be a member of a global [predominantly Europe and US] network of Security Specialists supporting business facing operations, ICS/OT, IT, and the Digital Security function, with a focus on mitigating and reducing the threat levels within the business related to Digital services.

The Cyber Security Engineer will be responsible for tuning and maintaining the Digital Security tooling and supporting Cyber Incident Management. As such you will be expected to have a technical understanding and be familiar with all tooling, security principles and security architecture, as well as being able to use the capabilities to ensure DS Smith's Security Compliance.

You will be expected to input into security plans, policies, and procedures for a variety of potential threats, vulnerabilities, and incidents. In this position, you will be expected to play a hands-on role in the implementation of cyber security projects, primarily but not limited to the ICS/OT space.

As our Cyber Security Engineer, your key responsibilities include but are not limited to:

1. Understand the business and IT locally, regionally, and globally.
2. Monitor network traffic for security incidents and events.
3. Investigate incidents and respond to events in real time.
4. Write detailed incident response reports.
5. Install, configure, and operate firewall rule assurance, User Access Defence, and other security software.
6. Take ownership of the IT/OT Security tooling and configurations.
7. Provide hands-on Cyber Security expertise.
8. Manage vulnerabilities out of the estate.
9. Develop and promote best practices for cyber security.
10. Conduct threat research.
11. Perform periodic risk assessments and manage third-party penetration tests.
12. Support the local teams to minimise threat.

About you

1. A knowledge of the Microsoft security stack.
2. Expertise in deploying solutions towards a Zero Trust environment.
3. Experience in leading a multi-functional team that works across borders.
4. Proficiency in a wide range of information security technologies including e-mail protection, active directory hardening, network hardening, firewall optimisation, data backup and restoration, endpoint security, and so on.
5. Hands-on experience in IT Security Incident Response and investigation.
6. Experience of working in accredited environments.
7. Possession of professional certifications and membership in professional associations is highly desirable (e.g., CISSP, ISO27000 certification, CISM, CEH, NCSC, CCP).

About us

DS Smith is a leading provider of sustainable packaging solutions, paper products, and recycling services in more than 30 different countries. It's a very exciting time to join, as we have committed to investing in our future across our strategic growth enablers within Innovation (R&D), Sustainability, and Digital & Data.

To fulfil our purpose of redefining packaging for a changing world, we aim to build a diverse, motivated, and engaged workforce. Our goal is to create a culture of inclusion where everyone is treated fairly, differences are valued, and everyone has an equal opportunity to succeed.

Our people come from diverse backgrounds, bringing different perspectives, ideas, and experiences to generate unique solutions focused on present and future sustainability challenges. We welcome all candidates to apply, even those not meeting all criteria.