+ £50,000 – £60,000
+ 25 Days Bank Holiday + Bank holidays
+ Private Medical Cover
You will play a crucial role in safeguarding our organisation's infrastructure, systems, and data from cybersecurity threats by following industry-standard best practices and ensuring the optimum security posture for the business. This is an excellent opportunity to play a big part in our transformation plans.
Implementing, integrating and monitoring security policies across the entire tech stack.
Develop and document security-related best practices and processes.
Conduct vulnerability assessments and assist in penetration testing of both internal and external endpoints
Collaborate with cross-functional teams to address security concerns and incidents.
Provide end-user education on security best practices and cyber awareness.
Evaluation and selection of new cybersecurity solutions
Act as the SME for all aspects of security for the business
A seasoned security expert with a proven background in delivering, maintaining and documenting security best practices across business infrastructure and systems.
Knowledge of security compliance standards including Cyber Essentials, GDPR, ISO 27001, NIST and the Telecoms Security Act
Strong working experience of Microsoft security tools and technologies, including M365, Azure and Entra
Significant exposure to Identity and access management, Data Loss Prevention, vulnerability management and security remediation best practices
Excellent working knowledge of Qualys VMDR or Nessus
Strong analytical and problem-solving skills to identify and mitigate security risks effectively.
Ideally have exposure to DEVSECOPS best practices and disciplines
Three or more year's experience as a security engineer or equivalent role
A proactive approach to staying updated with the latest security threats, vulnerabilities and mitigation techniques.
Excellent communication skills with the ability to convey complex information in simple terms