Senior Cyber Security Engineer

Job Description

Our client is a fast-growing Commodities Focused Financial Services Firm based in London with offices in the US and Asia. They are seeking to recruit a Senior Security Engineer to join their London team. Reporting to the IT Security Officer, you will work alongside the IT Security Engineer as part of a 3-man IT Security team. As the Senior Security Engineer, you will implement and maintain robust security systems and protocols across the IT infrastructure.

You will conduct risk assessments and vulnerability scans, mitigate vulnerabilities identified in penetration testing, and implement preventative measures to protect against cyber threats. You will monitor the security infrastructure, detect and respond to potential threats. You will help mentor and develop the IT security engineer and collaborate with the IT team to ensure compliance with security standards and best practices. You will be a key technical leader in safeguarding sensitive data and systems.

• Manage WAF and DDoS systems
• Manage the Web Security Gateway
• Manage the Email Security Gateway
• Manage the SIEM, SOAR, Protection and EDR, and respond to alerts and threats
• Carry out vulnerability scans, identify risks, and remediation
• Manage the perimeter and VPN firewalls
• Manage MFA and SSO
• Manage MDM/MAM and Conditional Access
• Manage security certificates and keys
• Manage IDS and IPS
• Manage PAM systems
• Deliver Cyber Security Awareness Training
• Remediate vulnerabilities and weaknesses identified during penetration testing
• Handle ad-hoc IT security projects

The successful candidate will have good working knowledge and experience managing the following technology stack:

• CrowdStrike EDR
• Mimecast Mail Security Gateway
• Duo
• Okta
• Rapid7 IVM, Tenable IO or Nessus
• Rapid7 IDR or CrowdStrike Next Gen SIEM
• Palo Alto Firewalls and Panorama
• InTune and Conditional Access
• Entra ID, Active Directory, DNS, GPO

Experience with the following technology stack is advantageous; understanding principles is required:

• Imperva WAF and DDoS
• Menlo Web Security Gateway
• Menlo CASB
• Cisco Secure Access
• Cisco Umbrella
• Cisco ASA
• KnowBe4
• Digicert Certificates and Microsoft Certificate Services
• Ivanti or Automox patching
• AppCheck or Tenable WAS
• Kali Linux (NMAP, Metasploit, BurpSuite, John etc.)

CISM, MS SC100, 200 and 900, OSCP or other penetration testing qualifications.

Financial services, SOC, Penetration testing is desirable.

• Excellent interpersonal, written, and verbal communication skills
• The ability to handle multiple priorities, tasks, and projects simultaneously
• Clear and precise verbal and written communication
• Ability to deliver presentations to staff
• Cross-functional influence, engagement, and collaboration skills

The position is usually based in London Head Office. Hours: The team works on a shift pattern to ensure cover from 07:30 to 17:30: (07:30 to 16:30 two days working from home, and 08:30 to 17:30 three days working in the office). There will be periods of weekend and out-of-hours work.