Senior Security Engineer - £60-£85k

Our client is a fast-growing Commodities-Focused Financial Services Firm based in London with offices in the US and Asia. They are seeking to recruit a Senior Security Engineer to join their London team.

Reporting to the IT Security Officer, you will work alongside the IT Security Engineer as part of a 3-person IT Security team. As the Senior Security Engineer, you will implement and maintain robust security systems and protocols across our IT infrastructure. Your responsibilities include conducting risk assessments and vulnerability scans, mitigating vulnerabilities identified in penetration testing, and implementing preventative measures to protect against cyber threats. You will monitor the security infrastructure, detect and respond to potential threats, mentor and develop the IT security engineer, and collaborate with the IT team to ensure compliance with security standards and best practices. Essentially, you will be a key technical leader in safeguarding sensitive data and systems.

Key Responsibilities/Duties

• Manage WAF and DDoS systems
• Manage the Web Security Gateway
• Manage the Email Security Gateway
• Manage the SIEM, SOAR, Identity Protection, EDR, and respond to alerts and threats
• Carry out vulnerability scans, identify risks, and perform remediation
• Manage perimeter and VPN firewalls
• Manage MFA and SSO
• Manage MDM/MAM and Conditional Access
• Manage security certificates and keys
• Manage IDS and IPS
• Manage PAM systems
• Deliver Cyber Security Awareness Training
• Remediate vulnerabilities identified during penetration testing
• Handle ad-hoc IT security projects

Experience – Essential

The successful candidate will have good working knowledge and experience with the following technology stack:

• CrowdStrike EDR
• Mimecast Mail Security Gateway
• Duo
• Okta
• Rapid7 IVM, Tenable IO, or Nessus
• Rapid7 IDR or CrowdStrike Next Gen SIEM
• Palo Alto Firewalls and Panorama
• InTune and Conditional Access

Experience with the following technologies is advantageous; understanding their principles is required:

• Imperva WAF and DDoS
• Menlo Web Security Gateway
• KnowBe4
• Digicert Certificates and Microsoft Certificate Services
• Ivanti or Automox patching
• AppCheck or Tenable WAS

Desired Education: CISM, MS SC100, 200, 900, OSCP or other penetration testing qualifications.

Industry: Financial services, SOC, Pentesting is desirable

Personal Skills:

• Excellent interpersonal, written, and verbal communication skills
• Ability to handle multiple priorities, tasks, and projects simultaneously
• Clear and precise communication skills
• Ability to deliver presentations to staff
• Cross-functional influence, engagement, and collaboration skills

Location and Hours

• The position is usually based at the London Head Office
• Hours: Cover from 07:30 to 17:30 in shifts: 07:30-16:30 (2 days WFH), and 08:30-17:30 (3 days in-office)
• Periods of weekend and out-of-hours work are expected

If you meet the above requirements, please apply.

Can't find the job you're looking for? Send us your info, and we will review your options.

(Permitted file size is 5MB; accepted formats: doc, docx, txt, pdf, rtf, xls)

Complete the form below; your data is processed under legitimate interest. No data from this form is stored on this website (see our privacy policy).