Cyber Security Engineer (Ops and Tooling)

We are in search of a talented and experienced Cyber Security Engineer to enhance our cyber technologies team.Job DescriptionThe chosen candidate will hold a pivotal role in bolstering and refining our organisation's cybersecurity posture across endpoints and network infrastructure. Collaborating closely with our cyber technologies team, you will showcase your skills ensure systems are deployed to optimal standards, kept up to date, and seamlessly aligned with business requirements.Taking a hands-on approach to security, you will manage and administer the functionality and hardening of an array of security tools throughout our corporate office, encompassing endpoint detection and response (EDR), vulnerability management platforms, web security gateways, firewalls, and security email gateways. Your responsibilities will extend to identifying, analysing, and implementing proactive measures to mitigate future threats. Furthermore, you will provide guidance and assistance to our other businesses, ensuring proper administration of security tools and recommended guidelines, and providing baselines based on your own research and vendor recommendations.We are seeking a cybersecurity professional with a deep understanding of security best practices and the capability to tackle complex security challenges with confidence. As a CISSP or similarly qualified expert, you will demonstrate extensive knowledge of industry best practices and a dedicated commitment to maintaining the highest standards of security.Job Location: The position entails a hybrid work model, requiring on-site presence two-three days a week at our Cardiff, UK office, necessitating applicants to reside within commuting distance.ResponsibilitiesReview existing cybersecurity tools to ensure they align with the organisation's security objectives and provide business value by conducting regular assessments of tooling subscriptions, verifying optimal use of features and functionalities, identifying gaps or underutilised capabilities, and recommending enhancements to maximise value and improve overall security posture.Develop and document best practice security guidelines for our tools to our wider businesses.Manage and use endpoint detection and response (EDR) tools to identify, investigate, and contain threats.Oversee vulnerability management solutions. This involves analysing vulnerability scans to assess risk based on exploitability, severity, and business impact. You will ensure that vulnerability management policies align with current threats and organisational needs. Additionally, you will monitor patch deployment timelines, identify potential delays, and collaborate with IT Operations teams to prioritise and expedite critical vulnerability patching.Configure and manage web security gateways to filter malicious traffic and protect against web-based attacks and to control inbound/outbound network traffic on firewalls to recommended practices.Configure and manage secure email gateways to defend against phishing attacks and malware delivered via email and assist with the implementation of DMARC compliance across the business.Identify and implement strategies to streamline operational tasks by eliminating unnecessary processes, leveraging automation solutions, and optimising workflow efficiency.Stay up to date on the latest cyber threats, vulnerabilities, and emerging technologies in cybersecurity tooling, implementing necessary security measures and providing insights and recommendations to enhance the organisation's security capabilities.RequirementsProfound understanding of cybersecurity principles, including zero trust architecture, system hardening, and least privilege access controls.Hands-on experience with endpoint detection and response (EDR), vulnerability management, firewalls, web security gateways, and secure email gateways, including expertise in configuring, managing, and auditing these systems.Experience with a diverse range of cloud technologies including Okta and Azure, as well as proficiency in traditional Active Directory management and implementation of conditional access policies.Proficiency in scripting languages such as Microsoft PowerShell and Python preferred.Display strong analytical and problem-solving abilities, with keen attention to detail, alongside a demonstrable capacity to effectively prioritise and execute tasks across multiple projects.Excellent communication and collaboration skills, with the ability to effectively interact with technical and non-technical stakeholders.Ability to work independently as well as part of a collaborative team.Experience in picking up and managing tickets in a ticketing system, ensuring timely resolution and documentation of tasks.Reside within commuting distance of our office located in Cardiff, UK.Any other requirements.Education and ExperienceBachelor's degree (or equivalent) in Computer Science, Information Technology, or related field.CISSP (Certified Information Systems Security Professional) certification or equivalent.Proven history of success in cybersecurity, demonstrated through experience implementing and maintaining security measures.Desirable Skills and ExperienceMicrosoft Certified: Security Operations Analyst Associate, Identity and Access Administrator Associate, Information Protection Administrator Associate or equivalent.Experience in system administration, troubleshooting, and recommending security enhancements, with a desired skill in Linux administration and security.MySQL and ClickHouse database platforms.Identity and access management principles.Managing credential leakage and continuous monitoring platforms to identify and mitigate security threats.BenefitsWe offer a competitive salary and benefits package, designed to attract, and retain top cybersecurity talent. Here are some highlights:Competitive salary and benefits package.Professional development and training opportunities.25 days paid leave after first year of employment.Wellbeing benefits (including 24/7 online GP and mental health support), Employee Assistance Programme, discounted family health / dental care / eye tests, cycle-to-work scheme.Group Life Assurance.Located in the vibrant city of Cardiff, with easy access to amenities, transportation, and a thriving cybersecurity community.Opportunity to work with cutting-edge security technologies.Hybrid work environment.