Security Engineer – ML537

Department: IT Department
Location: Nottingham, NG9 2JY
Closing Date: June 21, 2024

Job Summary

The Security engineer is expected to lead the charge in incident response and security automation. They must also be proficient in vulnerability assessment investigating email, security platform deployment, network security, and knowledge sharing.

The role will be based at Metroline head office in Cricklewood.¬† However, there may be a requirement to travel to other Company offices or associated company‚ÄĮlocations.

Main responsibilities

  • Mastermind Incident Response: Dive into alerts, wield the MITRE ATT&CK framework, and lead the charge in containing and remediating security incidents. Collaborate across teams to outsmart threats and keep our defences impenetrable.
  • Vulnerability Slayer: Hunt down weaknesses with vulnerability scans and assessments, prioritise risks like a hawk, and orchestrate swift remediation with IT teams. Keep the fortress patched and ready for anything.
  • Automation Architect: Craft scripts and tools to automate repetitive tasks, streamlining your workflow and amplifying our security muscle. Integrate security seamlessly into processes, making defences work smarter, not harder.
  • Email Guardian: Filter and analyse suspicious emails with expert-level sandboxing. Master DMARC, SPF, and DKIM to block spoofing and secure outbound emails with encryption. Become the gatekeeper of our inboxes.
  • Platform Maestro: Deploy, configure, and command a symphony of security tools – EDR/XDR, SIEM, vulnerability management, email gateways, you name it. Fine-tune rules and detections, optimising threat detection and reducing false alarms.
  • Network Security Sage: Possess a deep understanding of network protocols, security concepts, and monitoring tools. Firewalls, IDS/IPS, SIEM platforms – these are your weapons in the network battlefield.
  • Knowledge Crusader: Share your security expertise, collaborate with IT and development teams, and weave security into the fabric of every project. Be the trusted advisor, guiding us towards a more secure future.

Essential criteria for application

  • 3+ years of cyber security experience
  • Proven track record in incident response
  • Strong understanding of email security
  • Strong Scripting (e.g., PowerShell or Python)
  • Experience with security automation frameworks
  • Experience with Security platform management

Competencies & skills

  • Vulnerability management tools
  • Microsoft 365 Security
  • Privilege Access Management
  • Knowledge of industry-standard frameworks (NIST, SANS) and best practices controls (CIS)
  • Excellent communication and interpersonal skills
  • Passion for cyber defence
  • Relevant security certifications are a plus

Hours of work

38 hours per week, Monday to Friday

Salary

Competitive

The Equality Act

Metroline is an equal opportunity employer and all qualified applicants will receive consideration for employment with due regard to legal obligations for protected characteristics i.e. age, disability, marriage and civil partnership, gender reassignment, pregnancy and maternity, race, religion and belief, sex and sexual orientation.

How to apply

Please email a covering letter of application and CV to Mr Preyesh Lukha, Human Resources Administrator, [email protected]

Applications

Applications should include:

  • the reasons you are applying for the post;
  • why you believe you are a suitable candidate;
  • provide examples of how you meet the competencies & skills;
  • any relevant qualifications or experience.