Information Security Engineer

McLaren Applied
Woking
9 months ago
Applications closed

Related Jobs

View all jobs

Senior Information Security Engineer

Network Security Engineer

Senior Security Engineer

Principal Engineer - Product Security

Operational Technology Security Engineer

Operational Technology Security Engineer

Background

The world around us is experiencing significant change, the greatest in generations.

At McLaren Applied, we’re accelerating the response to that change. Our vision is that our people and technologies will pioneer a better future. Our mission is to achieve breakthroughs in performance.

We’re at the cutting edge of innovation in industries including automotive transportation and motorsport. We create solutions that drive efficiency and cost-effectiveness.

We want to help reduce the carbon footprint and become more sustainable. Our focus is on electrification and telemetry, control and analytics.

To deliver efficient lightweight electric powertrain and vehicle development; motorsport solutions that make series more sustainable and efficient; reliable connectivity solutions for transportation and insightful analytics and monitoring of transport fleets.

By applying our expertise, we deliver real benefits and pioneer a better future.

Purpose of the Role

To develop and operationally run security solutions with the overarching goal of securing our people, assets, and products through the effective implementation of collaborative and enduring security processes and technology.

Scope of Role

  1. Deliver modern security controls and risk reduction initiatives that implement both tactical and strategic capabilities across our on-premise and cloud-hosted solutions, including:
  2. Secure configuration of endpoints, OS, applications, containers and PaaS services, aligning to best practice for certifications (i.e., ISO27001)
  3. Data classification and data loss prevention
  4. Log collection and SIEM/SOAR monitoring and automated response
  5. Security testing, including automated testing and assessing formal penetration tests
  6. Contribute to the development of our security architecture and associated roadmap
  7. Act as point of contact for Managed Detection and Response (MDR) services
  8. Partner with our product teams to develop and embed our security solutions in a standardised way, enabling the overall adoption of our security architecture. Act as security consultant across a range of delivery work to establish security as a business enabler

Principal Accountabilities

  1. Identification and delivery of new compliance controls and procedures required for certification and re-certification
  2. Information and cyber security management of corporate and product assets
  3. Security solution assurance against company standards and industry best practice
  4. Security operations, including direct management (incident detection and response) and outsourced security management, within organisational SLAs
  5. Operating and maintaining the company risk register
  6. Produce routine security reporting to assist with investment decision making and value being derived from continuous improvement work

Knowledge, Skills, Qualifications and Experience

  1. Strong experience in securing hybrid cloud platforms and workloads, covering Azure, Hyper-V and AWS
  2. Experience with M365 and Entra ID
  3. Strong experience with software (DevSecOps) and hardware engineering lifecycles and associated tooling
  4. Experience in the operational running of SIEM/SOAR technologies, ideally including Azure Sentinel/Purview
  5. Information security frameworks, with experience of maintaining certification programmes (ISO27001) and aligned with standards in the automotive and rail industry
  6. Any of the following certifications would be an advantage:
    1. EC-Council Certified Ethical Hacker, Certified Penetration Testing Professional, Certified Cloud Security Engineer
    2. ISC2 Systems Security Certified Practitioner, Certified Cloud Security Professional, Certified Secure Software Lifecycle Professional
    3. Any Microsoft SC-coded certification
    4. AWS Security Specialty
  7. Strong communication skills and able to talk with authority about security trends, current threats and appropriate mitigation

What we can offer you:

In return for everything you bring to the table, we can ensure an exciting, challenging role in a dynamic business surrounded by some of the best people in their respective fields.

At McLaren Applied we firmly believe it’s the relationships and friendships we create while working that make us special. We’re also aware that the world is changing and we are part of that change. We all want and need different things from our work and home lives, so, if you have commitments outside of work, we’re open to talking through flexible working options that work for you and us.

  1. Annual leave (25 days + bank holidays, pro-rated for part-time colleagues).
  2. Enhanced Company Maternity, Paternity and Adoption leave and pay.
  3. Flexible working policies, including Hybrid Working.
  4. Life assurance to the value of 4 times base salary
  5. Opportunity to join the McLaren Applied Pension Plan
  6. Company funded individual private healthcare with the opportunity to extend to partner or spouse and/or dependents at a discounted rate.
  7. Ride-to-work with Evans Cycles – take advantage of the Government’s Cycle-to-Work scheme which offers savings of up to 42% on the cost of a new bike, cycling accessories and components.
  8. Electric car scheme – opportunity to drive a brand-new car in a more affordable way through this salary sacrifice scheme. Employees are eligible to join the scheme after successful completion of their probationary period.

McLaren Applied are committed to Diversity, Equality and Inclusion (DEI) and promote DEI in all we do. McLaren Applied are also members of the UK Government Disability Confident Scheme.

#J-18808-Ljbffr

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Careers

How Many Cyber Security Tools Do You Need to Know to Get a Cyber Security Job?

If you are trying to build or move forward in a cyber security career, it can feel like the list of tools you are expected to know never ends. One job advert asks for SIEM platforms, another mentions penetration testing tools, another lists cloud security, threat intelligence platforms, endpoint detection, scripting languages and compliance frameworks. Scroll LinkedIn and it gets worse. Everyone seems to “know” dozens of tools, certifications and platforms. Here is the reality most cyber security hiring managers agree on: they are not hiring you because you know every tool. They are hiring you because you understand risk, can think like an attacker and a defender, follow process, communicate clearly and make good decisions under pressure. Tools matter — but only when they support those outcomes. So how many cyber security tools do you actually need to know to get a job? For most job seekers, the answer is far fewer than you think. This article explains what employers really expect, which tools are essential, which are role-specific and how to focus your learning so you look credible, not overwhelmed.

Jobs

What Hiring Managers Look for First in Cyber Security Job Applications (UK Guide)

If you want to stand out in the highly competitive world of cyber security job applications, you need to understand what hiring managers look for before they even finish reading a CV. Cyber security hiring managers scan applications quickly and with specific priorities in mind. They assess not just your technical ability, but your judgement, professionalism, clarity, risk awareness and evidence of impact. This guide explains what hiring managers look for first in cyber security applications across roles like Security Analyst, Security Engineer, Penetration Tester, Incident Responder, Security Architect, Governance Risk and Compliance specialists and Cloud Security positions. Use this as a practical, step-by-step checklist to sharpen your CV, LinkedIn profile, cover letter and portfolio before you apply on www.cybersecurityjobs.tech .

Education

The Skills Gap in Cyber Security Jobs: What Universities Aren’t Teaching

Cyber security has become one of the most critical disciplines in the modern economy. From protecting financial systems and healthcare data to securing national infrastructure, cloud platforms and supply chains, cyber security professionals now sit at the frontline of digital trust. Demand for cyber security talent in the UK has surged. Job vacancies remain high, salaries continue to rise, and organisations across every sector report difficulty hiring skilled professionals. Yet despite this demand, many graduates struggle to break into cyber security roles and employers consistently report that candidates are not job-ready. The problem is not intelligence, ambition or academic effort. It is a persistent and widening skills gap between university education and real-world cyber security work. This article explores that gap in depth: what universities teach well, what they routinely miss, why the gap exists, what employers actually want, and how jobseekers can bridge the divide to build sustainable careers in cyber security.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.