Security Engineer - 6-month FTC

Department: CISO

Employment Type: Permanent - Full Time

Location: UK - London

As a Security Engineer, you’ll be part of the IT Security team responsible for monitoring the business’s network and endpoints for malicious and anomalous activity.

You’ll be responsible for designing, implementing, and maintaining security tooling and process for CFC. You’ll assist in reviewing incidents to assess their risk and urgency, acting as a point of escalation to less experienced team members.

You’ll be actively involved in the software development process advising developers on best practise and security architecture during development to ensure that CFC’s internal tooling is developed with security by design.

As a Security Engineer you will be a key component in designing, implementing, and maintaining tooling and processes to enhance CFC’s IT Security posture. You will be advising developers on best practice and security architecture during development. On top of this conducting security reviews of software prior to release to ensure they meet CFC’s security requirements.

You will be acting as an escalation point for investigation and resolution of events where more junior members of the team require support. Lead the creation of SOPs, policies, and procedures relating to our Information Security practices.

We would expect you to assist in reviewing and mitigation of vulnerability assessments, penetrations tests and security audits and working with IT to mitigate any identified risks. You will also be responsible for the assessment of vulnerabilities to identify the potential impact to CFC. As well as keeping up to date with the latest cyber security trends and updates.

You will be an analytical thinker with excellent problem-solving skills. That has experience with:

• Security Detection and Monitoring and manage Incident Response.
• SIEM tools (Azure Sentinel).
• Vulnerability Management.
• Working knowledge of Windows & Active Directory, working with Office 365 and Azure.
• Networking, including TCP/IP and other common protocols.
• Use of SASE including Cato preferred but not essential.

Love what you do:

We show up each day ready to take on the world. Our passion and intensity set us apart and makes the difference to our colleagues, customers, brokers and carriers.

Challenge everything:

We’re never afraid to question the way that things are done and we constantly challenge ourselves and others to makes things better.

Have fun, be good:

Insurance is a serious business, but we don’t take ourselves too seriously. We make it fun to work at CFC, we welcome all viewpoints, and we treat everyone how we would expect to be treated.