Cyber Security Engineer

CPL Specialist Talent Ltd ,
Cambridge, Cambridgeshire
Salary: From £50,000 to £55,000 per annum Quarterly Bonus, Ppension, 25 days A

Overview

Cpl are looking to speak with Network & Cyber Security Engineers in the Cambridgeshire region, for a full time with a leading security software company building a team in central Cambridge. Duties: Assess and evaluate security products as part of designing new security systems or upgrading existing systems Investigate breaches of security and recommend appropriate technology and control improvements Monitor for attacks, intrusions, and unusual, unauthorised, or illegal activity Provide advice and guidance on security strategies to manage identified risks and ensure adoption and adherence to standards Use analytic tools to determine emerging threat patterns and vulnerabilities Liaise with stakeholders in relation to security issues and provide recommendations Act on vulnerability information and conduct security risk assessments and business impact analysis on information systems Ensure all processes and controls that fall within your area of responsibility are operating effectively and are correctly evidenced as working Report security metrics and KPI’s to the Lead Security Specialist, concerning residual risk, vulnerabilities, and other security exposures including misuse of information assets and non-compliance Contribute to development of information security policy, standards, and guidelines Essential Skills: Expertise in analysing and identifying security weaknesses across a heterogeneous IT environment Review and recommend improvements and system changes for security implications Experience scoping, implementing and managing IAM, DLP & SIEM Experience and understanding of DevSecOps in relation to SaaS, IaaS and the security implications Experience securing and monitoring the LAN, WAN and VPNs Understand the concepts and application of Windows and Linux ACL, OS level security protection and common protocols e.g. TCP, HTTPS, IPMI, DHCP etc. Experience of analytic systems based on tools such as Greylog, Splunk, or EXABEAM Knowledge of Windows and Linux systems administration Pen testing engagement experience and advising accordingly Up to date knowledge of Hacks and vulnerablities Working knowledge of managing firewall and intrusion detection technologies Proficient in Python, bash, or PowerShell Desireables: An awareness of the Mitre ATT&CK framework and how it can be used to learn an adversary’s tactics and techniques and focus incident response Experience working in an ISO27001/2, PCI-DSS or SOC 2 environment Experience with automation tools such as Ansible, Chef, or Puppet Knowledge of OWASP (Open Web Application Security Project) Top Ten Risk Factors This job was originally posted as www.cwjobs.co.uk/job/89964202