Cyber Security Engineer

Job Description

Job title: Cyber Security Engineer

Company: Morson Talent

Job description: Company

The Bridge IT has forged a strategic partnership with a prestigious academic institution in search of a Cyber Security Engineer:

Salary: Approximately £40,000 + 20%

Location: UK-based, with the requirement to travel to Leeds _at least_ once every couple of months

Role Description:

This is a full-time hybrid position seeking a Cyber Security Engineer. The Cyber Security Engineer will actively contribute to various projects within the organization.

Responsibilities:

– Responsible for advising on, defining and leading the implementation of strategies and policies for DevSecOps and software development lifecycle services. This will include testing/test automation, static & dynamic code analysis, software supply chain & dependency management and repository management;
– Responsible for supporting projects in regard to security, ensuring it is embedded cleanly into every project we deliver. This will involve, but is not limited to, consulting and teaching stakeholders about secure practices, taking time to understand the business reason for the project and desired outcome, advising and supporting to implement secure practices, processes, and solutions
– Responsible for working with project stakeholders to identify security issues and risks with their project and develop mitigation plans;
– Conduct Security Testing, including but not limited to – Pen Testing, encompassing various testing types for – code, development, and APIs.
– Supervise the testing process and collaborate with pen testers, including 3rd Party Pen testers.
– Summarize and translate technical testing outcome reports for non-technical teams.
– Coordinate with relevant teams to address issues arising from different types of attacks, such as XSS attacks, SQL injection attacks, and their business impact.
– Collaborate with resolution teams and conduct internal re-tests.
– Review Cyber Security Policies (including Azure), propose corrections, and implement changes.
– Provide security advice and guidance to unblock projects.
Collaborate on firewall rules and other security-related matters.

Experience

– Previous experience in Cloud Cyber Security, preferably with Azure, but AWS and GCP experience will be considered.
– Expertise in multiple areas of Cyber Security (Cloud, Network, Application, DB, Helpdesk).
– Familiarity with SaaS (Software as a Service) and cloud transition, particularly in Azure.
– Knowledge of ServiceNow and handling Cyber Security Incidents, requests, access requests, and co-signing policies.
– Proficiency in API Security.
– Experience with IAM/IDAM change requests for various projects.
– Proficiency in using Splunk for Operations.
– Understanding of different types of attacks, such as XSS and SQL Injection.

Beneficial to have

– Familiarity with Burp suite, Try Hack Me, and Hack The Box for cybersecurity testing (or similar)
– Exposure to Microsoft Sentinel.
– Knowledge of NHS Digital Toolkit Security Regulation – DSPT.
– Familiarity with DevSecOps and API security.

The Person

We are seeking an individual with a high level of enthusiasm, a strong desire to learn and improve, and a genuine passion for all aspects of Cyber Security

Expected salary: £40000 per year

Location: Leeds, Kent

Job date: Fri, 05 Jan 2024 23:00:30 GMT

Apply for the job now!