Description:
An Infrastructure and Security Engineer is needed to join a transportation organisation, as this sits within Critical National Infrastructure, this is an exciting opportunity to work on high-level projects. This is a technically hands-on role assisting with Security Operations.
You will be involved in infrastructure security support, security implementation, infrastructure security support, incident response management, Vulnerability management, data security awareness activities related to governance, requirement and compliance, and more.
The ideal candidate will come from an infrastructure background or have a strong understanding and then moved into a security operations or engineering role, and be up for getting their hands dirty!
Infrastructure and Security Engineer Responsibilities:
- Participate in both proactive and reactive threat hunting.
- Execute vulnerability and web application assessments; provide analysis and recommendations to mitigate potential threats.
- Perform risk analysis reviews on systems and identify security gaps, the risks they present, and defining remediation options.
- Conduct Security Operations to review and onboard systems log source to SOC/SIEM and review and validate any incident alerts generated.
- Assist with problem management within ITIL best practices.
- Security Incident ticket management.
- Strong working knowledge and experience in Microsoft Exchange email administration and email security protection systems.
- Proven experience and knowledge of Next generation End Point protection (Anti-virus).
Skills, Experience, Qualifications, and Requirements:
- Previous experience working in a technical Cyber Security Team.
- Experience working on a variety of security incidents and problems, with the ability to prioritise and respond to them accordingly.
- Ability to engineer and present cyber security solutions.
- Documenting Cyber Security processes/ policies and procedures for a large enterprise.
- Exposure to working across a variety of security technologies, including Cloud collaboration tools, Network and Endpoint Detection Cyber Security Response and Management.
- Strong understanding of infrastructure systems security architecture, implementation and configuration.
- Industry-recognised certifications such as CySA+ (ComTIA Cybersecurity Analyst), CISSP or equivalent.
- Experience or knowledge of security frameworks and standards, such as ISO 27001, NIST, Cyber Essentials.