Enable job alerts via email!

Cyber Security Engineer

GardPass Consulting

Huntingdon

On-site

GBP 50,000 - 90,000

Full time

Yesterday
Be an early applicant

Boost your interview chances

Create a job specific, tailored resume for higher success rate.

Job summary

An established industry player is seeking a security expert with robust experience in network and system security, particularly within MOD environments. This role demands a proactive approach to incident detection and response, alongside a strong understanding of identity and access management. The ideal candidate will possess hands-on experience with various security tools and demonstrate leadership in advocating for security best practices. Join a forward-thinking team that prioritizes security in a DevOps culture, where your contributions will significantly enhance the organization's security posture and compliance with regulatory frameworks.

Qualifications

  • Experience in MOD or Home Office project environments is essential.
  • Strong knowledge of security frameworks and compliance is required.

Responsibilities

  • Advocate for security best practices in a DevOps culture.
  • Implement secure CI/CD pipelines and automate security policies.

Skills

Network and system security
Incident detection and response
Identity and access management (IAM)
Secure coding practices
Leadership and mentoring
Communication with teams
Containerization Security
API security knowledge

Tools

Trellix
Ivanti
ClearSwift
Yubikey
Git
SonarQube
Terraform
Ansible
Vault
Kubernetes

Job description

No Clearance required

DV process will start upon selection

Location: Huntingdon, Cambridgeshire

Required (Core Skills)
  1. Experience working in MOD or Home Office project environments
  2. Strong knowledge of network and system security, including firewalls, IDS/IPS, micro-segmentation, and host security.
  3. Hands-on experience with the following security products: Trellix, Ivanti, ClearSwift, Yubikey
  4. Understanding of secure coding practices and common vulnerabilities (OWASP Top 10, SANS Top 25).
  5. Expertise in identity and access management (IAM), including RBAC, ABAC, JWT and Cookie-based authentication.
  6. Incident detection and response in MOD environments.
  7. Security compliance and regulatory frameworks (e.g., NIST, CIS Benchmarks).
  8. Experience working with Kubernetes at an administrative level
Soft Skills
  1. Strong leadership and mentoring abilities.
  2. Effective communication with development, operations, and security teams.
  3. Ability to advocate for security best practices in a DevOps culture.
Desirable Skills
  1. Containerization Security
  • Expertise in Kubernetes security (e.g., RBAC, network policies, pod security standards, secrets management).
  • Knowledge of container runtime security (e.g., container escapes, rootless containers, sandboxing).
  • Image security best practices, including scanning, signing, and provenance verification.
  • Secure deployment patterns using Tanzu & Kubernetes.
  • Runtime security monitoring.
  • DevSecOps & CI/CD Security
    • Secure CI/CD pipeline design with security testing using tools like Git and SonarQube.
    • Implementation of Infrastructure as Code (IaC) security (e.g., Terraform, Ansible).
    • Secrets management in CI/CD pipelines using Vault or Kubernetes Secrets.
    • Security automation and policy enforcement using tools like GitHub Actions, GitLab CI, and Jenkins.
  • Cloud & Infrastructure Security
    • Strong knowledge of cloud security principles in a containerised environment.
    • Kubernetes security posture management (KSPM) using tools like Trivy.
    • Secure ingress/egress controls, service mesh security (e.g., Istio).
    • Encryption strategies for data at rest, in transit, and in use.
    • Network security best practices for Tanzu container networking (e.g., NSX, Rancher).
    • Compliance monitoring and security auditing for cloud-native environments.
  • Automation & Scripting
    • Scripting skills in Python, PowerShell for security automation.
    • API security knowledge (e.g., OAuth, JWT, API gateways, rate limiting).
    • Experience with Security as Code for automated policy enforcement.
    Get your free, confidential resume review.
    or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.
    TrustpilotStars
    Rated “Excellent” based on 14,992 reviews
    Follow us
    JobLeads Youtube ProfileJobLeads Linkedin ProfileJobLeads Instagram ProfileJobLeads Facebook ProfileJobLeads Twitter AccountJobLeads Xing Profile
    Company
    Services
    Free resources
    Support

    © JobLeads 2007 - 2025 | All rights reserved