Senior Cyber Security Engineer - 12 months FTC. Maternity Cover

Role Overview

This role sits within the Global IT Security department and operates as a global team responsible for cyber security at TP ICAP.

The Senior Cyber Security Engineer has the remit of proactively driving development of the cyber security capability in line with the evolving threat landscape. This includes; vulnerability management, access control, security platform engineering, detection and response activities. Coordinate with offensive security personnel to improve security posture based on Red/Purple team campaign findings.

The role requires a self-starter, capable of taking the initiative either as part of a group or working independently. An ability to problem solve through solutions engineering to deliver defined objectives is essential. This requires ingenuity and resourcefulness to achieve cyber security orientated goals, that also facilitate our business needs. Personal career development is strongly supported, especially where directly applicable to ongoing workstreams.

Overall, the Senior Cyber Security Engineer is required to have a willingness to learn and adapt, in order to accomplish outcomes that improve the overall cyber security posture of the group. Fundamental to this is the ability to exercise an offensive security mindset.

Role Responsibilities

Maintain knowledge of current ATP TTPs

Maintain knowledge of security tool landscape

Vulnerability identification and remediation

Penetration test report remediation

Privileged access management

Red/Purple offensive security activities

Incident response and forensics

Proactively identify opportunities for control improvements

Develop strong relationships with stakeholders across the business

Provide security tooling metrics

Review and provide security input on architecture design briefs and technical solution documents

Collaborate with solution architects to ensure security is embedded in system and cloud designs

Define and validate security controls across cloud environments, particularly AWS

Maintain awareness of cloud security architecture best practices and emerging technologies

Support the development and implementation of secure-by-design principles across projects

Security platform engineering and projects

Experience / Competences

Essential

Experience implementing vulnerability management, SIEM, PAM, IDS/IPS, EDR, DLP, CNAPP and AV platforms

Intermediate level knowledge of incident response processes for OS and network level events

Comfortable with Windows and Linux operating systems

Solid knowledge of networking, active directory and web applications

Comfortable with at least one scripting or programming language such as Python, PowerShell, Bash, or Go

Experience with reviewing and implementing Cloud security controls

Experience reviewing architecture design documents and identifying security risks

Strong understanding of AWS security services and controls (e.g., IAM, Guard Duty, SCPs, KMS)

Familiarity with cloud-native security frameworks and reference architectures

Desired

Incident response and forensics

Offensive security experience

Degree level accreditation or equivalent experience

OSCP, CEH or SANS certification

Experience with threat modelling and secure design principles

Band & level: Manager, 6

#LI-Hybrid #LI-MID