Lead Information Security Engineer - Infrastructure

Job description

Key Responsibilities

  • Act as the lead for Infrastructure Security in Europe, advising IT and Business unit stakeholders on risk management and impact assessment regarding Security initiatives
  • Work with the Solution, Platform, Risk Management and Global Threat and Vulnerability Management teams to ensure operating system, and network vulnerabilities are patched or remediated in line with security policy requirements
  • Develop and execute delivery plans in collaboration with Global ISRM Service teams and BISO’s to implement security tools and capabilities
  • Work with the Solution, Platform and Security Services teams to implement appropriate security solutions and tools based on the level of risk identified. Solution and toolsets include, but are not limited to endpoint security, database security, application security, and overall system logging and monitoring
  • Establish clear understanding and documentation of infrastructure environments covering Asset Management and Identity Management within data centres and computer facilities
  • Support the integration and implementation of security controls for global Information Technology capabilities, applications and / or platforms to ensure critical business objectives, regulatory requirements and information security policies are adhered to
  • Ensure the deployment of Security tools are achieved with the minimum of business impact and performance metrics are established to manage their effectiveness
  • Establish clear maintenance and support procedures for Network and End Point Security capabilities  
  • Participate in Scaled Agile planning and associated ceremonies, which includes working with the Security Architect and Solution teams to identify and convert customer needs into functional requirements, create a comprehensive and cross-functional roadmap, drive value-added objectives and manage/prioritise backlog items
  • Identifies and documents critical path decisions, make recommendations and provide thought leadership and influence solution leaders and business process owners
  • Maintain detailed knowledge of emerging threats, risks and technical innovations / security capabilities




Minimum Requirements


  • 8+ years’ experience in technical or security solution engineering and / or services delivery
  • Degree in Information Technology, Computer Science or 4 years in a related field or equivalent experience
  • At least 4 years specialist security operations experience
  • At least one or more recognised security certifications (e.g. MCSA, CISSP, CISMP, CCNA)

Critical Skills


  • Proven experience working in a Security Engineering or Operations capacity within and Enterprise organisation
  • Detailed understanding of vulnerability management within IT hardware and software operating system layers to include hardening, patching, anti-virus, APT, DDOS
  • Experience with executing vulnerability scans, leveraging toolsets and methods such as Veracode, Twistlock, MPT, Rapid7 Nexpose or Tenable Nessus
  • Knowledge of networking concepts (e.g. TCP/IP, LANs, VLANs, routing/switching, WANs, firewalls)
  • Knowledge and operational use of Security monitoring tools (i.e. SIEM, Threat and Vulnerability Scanning, firewalls, DLP, or equivalent products / technologies).
  • Knowledge of securing Operational Technology and Industrial Control Systems 
  • Understanding of identity access management principles and technologies (e.g. Multi Factor Authentication, privileged access management, Single Sign-on, etc.)
  • Knowledge of compliance regulations, and IT standards (i.e. GDPR, PCI-DSS, SOX)
  • Knowledge of ISO 27001 and/or NIST 800-53 security frameworks.
  • Ability to generate high quality solution documentation and establish performance metrics to manage solution effectiveness
  • Ability to work in a fast-paced and agile development environment in virtual teams across multiple geographies
  • Ability to document and articulate infrastructure vulnerabilities and communicate remediation actions to diverse audiences





Additional Knowledge & Skills:

  • Knowledge of the healthcare industry is an advantage
  • Familiarity with healthcare, privacy, and financial compliance regulations would be an advantage
  • Knowledge of ITIL service methodology would be an advantage
  • Experience in working with cloud based solutions would be an advantage