Infrastructure Security Engineer

We have an exciting opportunity to join our IT Technical Operations Team as an Infrastructure Security Engineer!

At Covéa Insurance, we're all about protecting what matters most - whether it's your home, your car, or your business. With our award-winning customer service and a wide range of insurance products, we're here to make a real difference.

Our purpose is simple but powerful: to help protect people against the worst happening and put it right if it does. It's what drives us every day, and it's why our people are proud to be part of something meaningful!

Our mission is to build inclusive, empowered teams where everyone feels welcome and valued! We celebrate what makes each of us unique and believe that diversity drives innovation and success. Whoever you are, we want you to feel confident being yourself in your team at work.

In this role, you'll be working in a team that supports the entire business including our Voice, claims, Networks and infrastructure Channels, Digital products, and services, from awareness to direct security delivery and more.

This is a hybrid position, combining the best of both worlds - working from home and spending time in our Halifax office, but we can consider people based outside of this region if necessary.

Step into a role where your potential is valued and your growth is supported.

• Vulnerability Management: Oversee vulnerability management across Windows Servers, Active Directory, VMware vSphere, Storage Arrays, Checkpoint, F5, and Jupiter systems.
• Security Maintenance: Regularly update security software and patches; implement and maintain security controls to protect against cyberattacks.
• Network Protection: Configure firewalls, intrusion detection/prevention systems, and other security devices to enforce access control and prevent unauthorized access.
• Threat Intelligence: Research emerging threats and vulnerabilities to identify risks and strengthen network defences.
• Architecture Analysis: Analyse and recommend improvements to network, system, and application architectures for enhanced security and performance.
• Audit & Assessment Support: Assist in responding to audits, penetration tests, and vulnerability assessments.
• Team Leadership: Mentor junior colleagues, demonstrate resilience and resourcefulness, and promote an inclusive and respectful workplace culture.
• Customer Experience: Uphold Treating Customers Fairly (TCF) principles, contribute positively to customer experience, and deliver memorable service.
• Compliance & Risk Management: Ensure adherence to legal, regulatory, and company policies; identify and report risks such as fraud, financial crime, and money laundering.
• Data Protection: Handle personal data lawfully and in accordance with the Data Protection Act 1998 and related legislation.

• Technical Expertise: Proven experience with Patch Management, Windows Server technologies, Linux OS, Active Directory, Microsoft Exchange, Cisco ASA and Switches, F5, Checkpoint Firewalls, Zscaler, and Jupiter Mist Behaviours.
• Security Knowledge: Strong understanding of cybersecurity threats, vulnerabilities, and attack methods; ability to document network security issues, procedures, and incident reports clearly.
• Decision-Making & Problem Solving: Demonstrated ability to assess risks and benefits, make sound decisions, and troubleshoot complex issues effectively.
• Organizational Alignment: Deep understanding of organizational mission, values, and goals, with consistent application in daily responsibilities.
• Learning & Development: Maintains curiosity and a proactive approach to learning new technologies and techniques; capable of mentoring junior staff.
• Cloud & Storage Exposure: Familiarity with AWS and Azure cloud services, enterprise storage arrays, and cloud-based applications and virtual appliances.
• Project Experience: Experience working in complex multi-solution networks and DevOps/Agile project environments.
• Qualifications: Educated to A Level standard or equivalent; preferably ITIL Foundation certified or willing to obtain. Holds or is pursuing certifications such as MCSA/MCSE, AWS Associate, VMWare VCP7, and CCNP.
• Industry Standards & Compliance: Knowledge of corporate, industry, and professional standards, regulations, and legislation relevant to IT and network security.
• Work Ethic & Delivery: Self-starter with a strong ability to deliver results, produce bespoke solutions, and finish tasks with minimal supervision

Not sure if you tick every box? That's okay! At Covéa, we know that great people don't always meet every single requirement listed in a job ad. If this role excites you and you think you could be a good fit, we'd love to hear from you - so go ahead and apply! We're all about building a diverse, inclusive team where everyone can thrive.

• Flexible working – 36.25 hours a week with flexitime & hybrid options
• Annual pay review – plus performance bonuses (up to 30% depending on level)
• Generous holidays – 25-27 days + bank holidays, with buy/sell options
• Pension perks – 7.5% employer contribution, rising to 9% with your input
• A culture where everyone belongs – we're committed to diversity, equity & inclusion, with real action, employee-led community groups, and ongoing learning to make Covéa a place where everyone can thrive
• Mental & financial support – through our dedicated Wellbeing group
• Career growth – training, qualifications & apprenticeships to help you thrive
• Health & wellbeing – private medical cover, 24/7 Virtual GP, health checks, flu jabs & more
• Drive in style – Tusker Car Scheme with fully maintained insured vehicles
• Extra savings – gym discounts, Cycle to Work, and retail offers via Perkpal
• And much more

Excited about this opportunity? So are we! Apply today and be part of our journey.

As a Disability Confident Employer, we're committed to fair and accessible recruitment. If you need any adjustments or support during the application process, just let us know - we're here to help.

Applicants must currently reside in the United Kingdom and possess full and unrestricted right to work in the UK. Unfortunately, we are unable to offer Visa sponsorship for this role.

Salary: Dependent on Experience

Working hours: 36.25