Cyber Security Engineer

Job Title: Cyber Security Engineer
Location: London
Department: Technology Infrastructure
Permanent

Department overview:
Our Technology Infrastructure team operates globally and is responsible for every aspect of the firm's platforms. This ranges from our EUC/Office environments to Trading and Core service Co-Location Data Centres, and extends to Public Cloud, delivering top-tier technology services to a dynamic and demanding Trading organisation.

In addition to meeting the round-the-clock operational demands of the platforms, we continuously evolve and transform our platforms to maintain a competitive edge that our business requires. We innovate to provide valuable solutions and leverage our skilled Technology teams to deliver against rapidly changing business requirements.

Role Overview:
The role is a unique opportunity working as a senior individual contributor within a best in class Cyber team. This role requires working with and supporting stakeholders located globally in a dynamic environment where business and priorities will react to market requirements and trading priorities. Risk assessment, operational effectiveness and a strategic mindset are key whilst maintaining a pragmatic approach to balance security and operational effectiveness.

Responsibilities:

1. Threat Detection and Response: Manage and monitor security systems, investigate alerts, and conduct threat hunting/root cause analysis to identify and respond to threats.
2. Security Assessments and Compliance: Perform vulnerability assessments, penetration testing, and security audits to ensure compliance and mitigate risks.
3. Security Engineering and Architecture: Design and implement security solutions and review security architectures to improve overall security posture.
4. Security Awareness and Training: Develop and deliver security awareness programs to promote a security-conscious culture.
5. Incident Response: Develop and maintain incident response plans to effectively handle security incidents.
6. Third-Party Risk Management: Assess and manage risks associated with third-party vendors to protect the organization.

Experience required:
Technical Knowledge:

1. Endpoint: Experience with EPP, EDR/XDR solutions, and related tools (e.g., Defender, Cortex XDR).
2. Network: Proficiency with firewalls, IDS/IPS, VPNs, web proxies, and network monitoring tools (e.g., Palo Alto NGFW, Cisco IOS).
3. Application: Experience in integrating security practices within DevOps pipelines, including automated security testing, CI/CD security, SAST/DAST, and secure coding practices.
4. Identity: Proficiency with identity and IAM tools and best practices, such as MFA, RBAC, and PAM, (e.g., AAD, SSO, Okta).
5. Data: Knowledge of data protection practices, such as encryption, key management, and DLP.

Industry Knowledge:

1. Frameworks: Ability to apply security best practices to the design and implement of secure systems following cybersecurity standards and frameworks such as NIST, CIS Controls, and MITRE ATT&CK.
2. Automation: Proficiency in scripting languages (e.g., Python, Bash, PowerShell) to automate security tasks, streamline workflows, and integrate security tools.
3. Foundational: Expertise in fundamental network and system protocols.

BlueCrest is committed to providing an inclusive environment for its workforce. As an employer, we provide equal opportunities to all people regardless of their gender, marital or civil partnership status, race, religion or ethnicity, disability, age, sexual orientation or nationality.