We are hiring an Information Technology Security Engineer to join the team here at CMC Markets.
You will be involved in Implementing new security tools, technology and initiatives, undertaking project work as requested; Installation, configuration, upgrade and management of security technology; Day to day maintenance, support, operation and troubleshooting of security technology in conjunction with other teams in IT; Day to day security operations of the global IT estate; monitoring, vulnerability assessment, scanning, compliance checking, controls validation; Definition, collation, automation, maintenance and reporting of security information, metrics and security status; Monitoring and analyses of networks, systems, devices and logs for security events, anomalies and information; Investigation and resolution of potential security incidents; Define, document, maintain and implement security baselines, standards, policy and procedures in conjunction with relevant IT teams; Automate compliance checking of agreed standards, policy and controls; Provide expert assistance and security consultancy to all other IT teams, in line with best practice and to meet business requirements; Support the Head of Security and Information Security team in the identification and tracking of security risks; Actively participate and suggest continuous improvements to security in association with the Information Security team and Global IT departments;
KEY SKILLS AND EXPERIENCE
Essential
Scripting & Automation. Relevant operational IT security knowledge and experience; Vulnerability assessment, security log & event analysis, security metrics; Strong networking skills and knowledge; Windows and Linux experience and proficiency; Security policy development; Incident response; Cloud Security & Orchestration / DevSevOps (AWS)
Desirable
Security qualifications (e.g. CISSP); Web Application Security Assessment / Penetration Testing; IPS & Firewalls, Splunk; Management of: AV, VPN, DLP, WAF, Web Filtering, Log Management;
