IT Security Engineer

Are you passionate about protecting critical infrastructure and driving proactive security? Were looking for an individual whos ready to take ownership of our vulnerability management ecosystem and lead the charge in deploying and optimizing Tenable Nessus and Tenable SC platforms.

This is more than a technical role, its a mission–critical opportunity to shape how we defend our environments, empower our teams, and meet the highest standards of compliance and resilience. Youll be the go–to expert, collaborating across departments to ensure our systems are secure, our risks are visible, and our responses are swift.

If you thrive in fast–paced environments, love solving complex problems, and want to make a real impact, this is your chance to be at the forefront of enterprise security.

• Lead deployment, configuration, and lifecycle management of Tenable Nessus and Tenable.SC across varied environments.
• Design and execute vulnerability scanning strategies aligned with business priorities and risk appetite.
• Validate results, investigate anomalies, and coordinate remediation with infra, network, hosting, and app teams.
• Maintain gold–standard documentation (guides, SOPs, user manuals).
• Build tailored dashboards and reports to drive visibility and informed decision–making.
• Embed vulnerability management into IT, security, and compliance workflows and planning.
• Provide training and mentorship to foster security awareness and technical excellence.
• Ensure practices meet Cyber Essentials Plus and ISO 27001 requirements, supporting audits and certification.
• Identify gaps, implement enhancements, and drive automation for continuous improvement.
• Integrate Tenable tools with SIEM, CMDB, and ticketing systems to streamline workflows.
• Serve as SME in vulnerability management for incident response, risk assessments, and architecture reviews.
• Represent the function in cross–functional forums, steering committees, and client engagements.
• Oversee patching strategies to achieve high compliance with infra and application teams.

• Knowledge of leading the deployment, configuration, and lifecycle management of Tenable Nessus and Tenable.SC across diverse infrastructure environments.
• Designing and execution of comprehensive vulnerability scanning strategies that align with the client business priorities and risk appetite.
• Making security recommendations based on market intelligence and new security threats.
• Validating scan results, investigating anomalies, and coordinating remediation efforts with infrastructure, hosting, networks and application teams.
• Working knowledge of developing and overseeing patching strategies, working with infrastructure and application teams to achieve high levels of compliance each month.
• Familiarity and understanding of ISO27001, GDPR and NIST
• Certification such as CISSP, CISM, CEH, or SC–200, AZ–500

Employment Type: Full–time

Location: Newport, Hybrid

Security Clearance Level: holding SC clearance or eligible for SC clearance

Internal Recruiter: Lee

Salary: GBP37k–GBP41k dependent on experience

Benefits: 25 days annual leave with the option to buy additional days, health cash plan, life assurance, pension, and generous flexible benefits fund (3% of base salary).

We support different ways of working and can offer a range of flexible working arrangements. If youre interested and need to work flexibly, please apply and talk to us about what might be possible.

Sopra Steria's Aerospace, Defence and Security business designs, develops and deploys digital solutions to Central Government clients. The work we do makes a real difference to the client's goal of National Security, and we operate in a unique and privileged environment. We provide time for professional development, coaching and mentoring, and foster a culture where employees feel valued and supported.

We embrace difference as a source of creativity and innovation and strive to become a more diverse organisation. We welcome applications from diverse backgrounds and identities and are committed to equality of opportunity for all.

If you require adjustments to the recruitment process to perform at your best, please let us know when completing your application. We participate in the Disability Confident scheme and will offer an interview to any candidate with a disability who meets the minimum criteria for the role.