Security Infrastructure Engineer

+6 months +

+Hybrid in Corsham

+Inside IR35

+£500 - £580 a day

+SC / DV cleared role

Key Skills:

• SC / DV clearance
• Vmware
• Linux
• Cyber Security
• MOD experience

Security Infrastructure Engineer to support the Security Team in the installation, configuration, maintenance, and update of servers and software components.

Working closely with the Project Manager (PM), Technical Design Architect (TDA), Security Assurance Coordinator (SAC), and wider engineering teams, you will play a key role in delivering compliant, accredited, and secure infrastructure solutions within a complex defence environment.

• Support the installation, configuration, administration, and maintenance of secure infrastructure and software components.
• Work with the PM, TDA, and engineering teams to produce system security engineering designs, solutions, and documentation.
• Act as the primary security engineering conduit between PM, SAC, TDA, and engineering teams to ensure compliant security solutions.
• Attend and contribute to regular governance and review meetings, including the Security Working Group (SWG).
• Engage with stakeholders and dependent projects to deliver coordinated security engineering solutions supporting accreditation and registrations
• Contribute to the Security Accreditation Plan in coordination with the Project SAC.
• Validate engineering designs against JSP 453 / JSP 604, providing supporting evidence and documentation.
• Identify security risks, recommend mitigations, and advise on secure design decisions.
• Provide advice on in-service and emerging cyber security technologies, including cost, risk, and benefits analysis.

• Strong experience in security infrastructure engineering within secure or regulated environments.
• Infrastructure access control expertise, including:
• Ubuntu / Linux system administration
• LDAP design and management
• RADIUS / TACACS configuration

• Proven experience supporting the installation, configuration, administration, and support of secure infrastructure solutions.
• Strong understanding and administration of PKI hierarchies.
• Knowledge of security frameworks including NIST CSF, ISO 27001, and MOD Secure by Design (SbD).
• Experience providing security input to:
• Virtualisation technologies (VMware ESXi 8, vCentre 8)
• Network infrastructure (Cisco IOS-XE, ASA, BGP, VRF/MPLS, VPN, QoS)

• Clear understanding of JSP 604 / JSP 453 network security engineering compliance.

• Cyber security certifications such as:

  • CompTIA Security+
  • GIAC Security Essentials (GSEC)
  • Systems Security Certified Practitioner (SSCP)

• Scripting and automation (Python, PHP).
• Delivery in high-pressure, complex organisational environments.
• Writing and analysing technical and security requirements.
• Supporting product selection against cost, performance, and timescale constraints.
• Experience working within large, multi-disciplinary technical teams.
• Knowledge of Cyber Essentials / Cyber Essentials Plus.
• Experience with penetration testing and system security assurance.
• In-date professional registration (e.g. APMG, CIISec).
• Experience delivering secure solutions within the UK public sector, ideally Defence Digital.
• Delivery experience across Agile (SAFe4) and Waterfall methodologies.
• Knowledge of SCOM.