Cyber Security Engineer
Posted 25 days ago
- London, Greater London
- Any
- External
- Expires In 2 months
Job Title: Cyber Security EngineerLocation: LondonDepartment: Technology InfrastructurePermanent
Department overview:
Our Technology Infrastructure team operates globally and is responsible for every aspect of the firm's platforms. This ranges from our EUC/Office environments to Trading and Core service Co-Location Data Centres, and extends to Public Cloud, delivering top-tier technology services to a dynamic and demanding Trading organisation.In addition to meeting the round-the-clock operational demands of the platforms, we continuously evolve and transform our platforms to maintain a competitive edge that our business requires. We innovate to provide valuable solutions and leverage our skilled Technology teams to deliver against rapidly changing business requirements.
Role Overview:
The candidate would support the Cyber Security Manager and the company’s cyber security strategy. We work closely with the other technology teams and business areas.
You must be pragmatic, enjoy challenges and be keen to learn. Be adaptable and level headed in pressure situations. A problem solver with a love of technology, with a desire to learn new concepts and applications quickly.
The role requires supporting staff located globally in a dynamic environment where business and priorities will react to market requirements & trading priorities. Risk assessment and operational effectiveness are key whilst maintaining a pragmatic approach to the security vs convenience balance.
Lead with ongoing improvement of Cyber Security tooling, configuration (best practise), identify gaps for improvement
Manage and Respond to Alerts from multiple sources, e.g. generated by tooling reports & emails.
Threat Hunting – Investigate root cause of security alerts and issues, covering core technologies
Create training and phishing campaigns to assess staff capability
Support and engage with infrastructure teams to progress analysis and mitigations
Ability to determine and prioritise own workload, self-motivated, good communicator
Lead security assessments of 3rd party tools, network infrastructure, hosts and applications – ability to enumerate hosts and services, packet captures
Identify gaps in security, Research and recommend improvements, Review new toolsets for use within the company, exploit/security testing
Lead and create training program for all staff
Facilitate external security testing and mitigation (Pen testing)
Occasional Weekend working onsite, regular out of hours alert/email monitoring, BCP and Cyber Incident Simulation
Lead due diligence of 3rd party services to assist business with purchasing decisions, security testing applications
Lead responses to external audits and DDQs
Create appropriate documentation, for internal department and business use
Create summary reports on monthly basis for senior management
Annual Review and update of Security policies and process
Ability to interpret and convey complex security issues to non-technical staff
Engagement with Vendors for products assessment, proof of concepts, cost effectiveness
Experience required:
5 years minimum experience in a Cyber Security Engineer or equivalent role
Cyber qualifications such as CEH, CISSP, OSCP or equivalent
Experience of IT System Administration of Linux and Windows technologies
Knowledge of Enterprise Class infrastructure technologies
Demonstrate understanding of TCP/IP + Firewalls technologies
Demonstrate Linux/Windows command line for reviewing processes, service state, network activity, restarting services.
Deep Understanding of wider Technologies around Server, Desktop, Storage, Network, Database, F/Walls, SaaS, Virtual Machines.
Experience of Advanced Threat Protection / Behavioral Analytics Tooling
Demonstrate understanding of security issues announced in the industry, threat actors, and interpret appropriate response/activity based on risk and impact
Demonstrate Knowledge of running exploits/penetration testing for assessment of our own tools and infrastructure.
Experience of incident management process, vulnerability assessment and management
Demonstrate Understanding of DLP, IPS, Endpoint, anti-malware, Sandbox, Vulnerability scanners
Demonstrate understanding of Mail security controls
Understanding of common methods of attack, from phishing to insider threats
TCP/IP, computer networking, routing and switching – an understanding of the fundamentals: the language, protocols used and underpinning technologies of the internet
Experience working in a Financial or Critical Production environment
Experience of forensics – investigation and analysis of how and why a breach or other compromise occurred
Scripting in at least one of bash, python or powershell
About you:
The ideal candidate is analytical and methodical, with a proven track record in problem-solving, critical BAU, advanced engineering and technology service delivery in a high-pressure, time-sensitive environment. Passionate about emerging technology trends, innovations and directions, and eager to suggest and implement new solutions to enhance our technology performance. Understanding the need for rapid delivery while appreciating business risk and constraints to ensure adherence to service levels.
You should have extensive experience working both independently and as part of a diverse team, meeting both broad and specific project/BAU objectives. This role requires excellent organisational skills, open communication, and a collaborative approach.
BlueCrest is committed to providing an inclusive environment for its workforce. As an employer, we provide equal opportunities to all people regardless of their gender, marital or civil partnership status, race, religion or ethnicity, disability, age, sexual orientation or nationality.
#J-18808-Ljbffr
Department overview:
Our Technology Infrastructure team operates globally and is responsible for every aspect of the firm's platforms. This ranges from our EUC/Office environments to Trading and Core service Co-Location Data Centres, and extends to Public Cloud, delivering top-tier technology services to a dynamic and demanding Trading organisation.In addition to meeting the round-the-clock operational demands of the platforms, we continuously evolve and transform our platforms to maintain a competitive edge that our business requires. We innovate to provide valuable solutions and leverage our skilled Technology teams to deliver against rapidly changing business requirements.
Role Overview:
The candidate would support the Cyber Security Manager and the company’s cyber security strategy. We work closely with the other technology teams and business areas.
You must be pragmatic, enjoy challenges and be keen to learn. Be adaptable and level headed in pressure situations. A problem solver with a love of technology, with a desire to learn new concepts and applications quickly.
The role requires supporting staff located globally in a dynamic environment where business and priorities will react to market requirements & trading priorities. Risk assessment and operational effectiveness are key whilst maintaining a pragmatic approach to the security vs convenience balance.
Lead with ongoing improvement of Cyber Security tooling, configuration (best practise), identify gaps for improvement
Manage and Respond to Alerts from multiple sources, e.g. generated by tooling reports & emails.
Threat Hunting – Investigate root cause of security alerts and issues, covering core technologies
Create training and phishing campaigns to assess staff capability
Support and engage with infrastructure teams to progress analysis and mitigations
Ability to determine and prioritise own workload, self-motivated, good communicator
Lead security assessments of 3rd party tools, network infrastructure, hosts and applications – ability to enumerate hosts and services, packet captures
Identify gaps in security, Research and recommend improvements, Review new toolsets for use within the company, exploit/security testing
Lead and create training program for all staff
Facilitate external security testing and mitigation (Pen testing)
Occasional Weekend working onsite, regular out of hours alert/email monitoring, BCP and Cyber Incident Simulation
Lead due diligence of 3rd party services to assist business with purchasing decisions, security testing applications
Lead responses to external audits and DDQs
Create appropriate documentation, for internal department and business use
Create summary reports on monthly basis for senior management
Annual Review and update of Security policies and process
Ability to interpret and convey complex security issues to non-technical staff
Engagement with Vendors for products assessment, proof of concepts, cost effectiveness
Experience required:
5 years minimum experience in a Cyber Security Engineer or equivalent role
Cyber qualifications such as CEH, CISSP, OSCP or equivalent
Experience of IT System Administration of Linux and Windows technologies
Knowledge of Enterprise Class infrastructure technologies
Demonstrate understanding of TCP/IP + Firewalls technologies
Demonstrate Linux/Windows command line for reviewing processes, service state, network activity, restarting services.
Deep Understanding of wider Technologies around Server, Desktop, Storage, Network, Database, F/Walls, SaaS, Virtual Machines.
Experience of Advanced Threat Protection / Behavioral Analytics Tooling
Demonstrate understanding of security issues announced in the industry, threat actors, and interpret appropriate response/activity based on risk and impact
Demonstrate Knowledge of running exploits/penetration testing for assessment of our own tools and infrastructure.
Experience of incident management process, vulnerability assessment and management
Demonstrate Understanding of DLP, IPS, Endpoint, anti-malware, Sandbox, Vulnerability scanners
Demonstrate understanding of Mail security controls
Understanding of common methods of attack, from phishing to insider threats
TCP/IP, computer networking, routing and switching – an understanding of the fundamentals: the language, protocols used and underpinning technologies of the internet
Experience working in a Financial or Critical Production environment
Experience of forensics – investigation and analysis of how and why a breach or other compromise occurred
Scripting in at least one of bash, python or powershell
About you:
The ideal candidate is analytical and methodical, with a proven track record in problem-solving, critical BAU, advanced engineering and technology service delivery in a high-pressure, time-sensitive environment. Passionate about emerging technology trends, innovations and directions, and eager to suggest and implement new solutions to enhance our technology performance. Understanding the need for rapid delivery while appreciating business risk and constraints to ensure adherence to service levels.
You should have extensive experience working both independently and as part of a diverse team, meeting both broad and specific project/BAU objectives. This role requires excellent organisational skills, open communication, and a collaborative approach.
BlueCrest is committed to providing an inclusive environment for its workforce. As an employer, we provide equal opportunities to all people regardless of their gender, marital or civil partnership status, race, religion or ethnicity, disability, age, sexual orientation or nationality.
#J-18808-Ljbffr
.webp "Apply4U | Sign Up")
.webp "Apply4U | Contact Us")
.webp "Apply4U | Sign up")
