Principal CyberSecurity Engineer

Job Title: Principal CyberSecurity Engineer
Location: Cardiff Bay, Wales
Salary: up to £47,000.00 per annum
Department: Group IT & Security
Reports To: Head of Information Security


Reporting to the Head of Information Security, the Principal Cyber Security Engineer will be responsible for implementing information security solutions across all infrastructure and end user services.

The Information Security team improves Creditsafe’s security posture through mitigating vulnerabilities, performing threat hunting, implementing security controls and deploying solutions to provide defence in depth. This will be achieved through guidance from the Head of Information Security, Group IT and Security Director and researching new tools and technologies, while promoting continuous improvement and best practice within the department. All new services will be transitioned to live operations with the relevant supporting documentation created by members of the Information Security team.

You will be working in a fast-paced Agile environment and the role will require the ability to focus and refocus effort based on the business and operational needs, managing several issues and projects at any one time.

The Information Security team will analyse, manage and remediate all security incidents across the Creditsafe estate with guidance and training provided to other members of the Technology Engineering department where appropriate.

Principal responsibilities:

• Design, configuration & implementation monitoring of:
• SIEM solutions and integrations
• AntiMalware and AntiVirus
• Identifying OS and Application patching needs
• Infrastructure hardware, software and network security
• Cryptography
• Defining security requirements for:
• End user device security applications
• Hardening Standards for:
• Devices
• OS
• Servers
• Key applications
• Switches
• Firewalls
• Microsoft EMS
• SIEM solution monitoring
• Analysing and remediating security events
• Identifying security vulnerabilities and remediating them

Additional Responsibilities:

In addition to commissioning new services, the Security Operations team will be a point of Tier 4 support for complex technical issues and root cause analysis of:

• Security incidents
• Have a willingness to participate in a 24/7 on call rota as required
• Active Directory / Office 365 / Patching / Capacity & Availability delivery

**Please note that the responsibility lists detailed above are not exhaustive and the Principal CyberSecurity Engineer may be requested to perform additional duties / take on additional responsibilities deemed as reasonable by their direct line manager.

Candidate Specification

I.T. Proficiency (Essential)
• Unified Security Management & Threat Intelligence solutions (e.g. Securonix, AlienVault, Splunk, CarbonBlack)
• Experienced in scoping penetration tests, performing vulnerability analysis
• Security scanning tools (e.g. Rapid7, Tenable, Kali, Netwrix)
• Security Patch management (e.g. WSUS, 3rd party patch management tools)
• Managing enterprise security solutions (e.g. AV / DLP / IDS / IPS / IAM)
• Windows server – 2008 (R2), 2012 (R2) and 2016
• Linux (CentOS / Ubuntu)
• Commercial experience of AWS / Azure environments
• General networking skills (DNS, DHCP, TCP/IP)
• Vmware 6.x
• Managing workloads through a workload management toolset

I.T. Proficiency (Desirable)
• Experience of supporting Citrix XenApp and MS Windows desktop environments
• Microsoft Exchange (2010, 2013)
• Office365
• Shared storage (e.g. Dell EqualLogic / Compellent)
• Veeam Backup and replication services
• Experience of monitoring tools such as Solarwinds Orion, CloudWatch, Site24x7
• Information Security Certification (CompTIA Security+, CompTIA CyberSecurity Analyst+, AWS Certified Security – Specialty)