Security Engineer

Our client seeks a forward-thinking Security Engineer to join their IT Security team and help them stay ahead of emerging threats. You will work closely with the Head of IT Security to translate Information Security policies into actionable procedures, helping ensure systems are protected and compliant. You will play a crucial role in designing, implementing, and maintaining cutting-edge security measures.

Key Responsibilities:

1. Policy Implementation: Partner with the Head of IT Security to align, review, and implement Information Security Policies across all departments and systems.
2. Compliance Assurance: Develop mechanisms to monitor and measure compliance with Information Security Policies, addressing any issues proactively.
3. Network and Cloud Security: Help drive initiatives to design and implement security solutions for Azure and M365 environments, ensuring adherence to industry best practices and regulatory standards.
4. Supplier Security Assessment: Evaluate and ensure the security posture of Material IT Suppliers, ensuring compliance with security standards and contractual obligations.
5. Risk Assessment: Conduct risk assessments, analyze vulnerability and penetration testing reports, and develop risk mitigation strategies.
6. Access Management: Help develop and maintain a robust Role-Based Access Control Framework, ensuring efficient management of access rights.

Key Skills & Experience:

1. Ideally a Degree in Computer Science, Information Security, or related field (or equivalent experience).
2. Advanced certifications such as CISSP, CISM, or equivalent are preferred.
3. 5+ years of experience in network and/or Cloud security roles.
4. Proven experience in designing and implementing security solutions in Azure and M365 environments.
5. Strong knowledge of security frameworks (e.g., NIST, ISO27000 series).
6. Expertise in network security protocols, Azure security solutions, firewalls, intrusion detection systems, VPNs, etc.
7. Proficient in vulnerability assessment tools, incident response frameworks, and risk management methodologies.
8. Ability to collaborate effectively with cross-functional teams.
9. Analytical mindset to interpret security data and make informed decisions.
10. Strong relationship management skills, comfortable dealing with stakeholders at all levels.