Infrastructure Security Engineer

The IT Team are the backbone of our technology environment, responsible for designing, implementing, and maintaining all foundational technology systems that support business operations. This includes managing networks, servers, data centres, cloud platforms, storage solutions, and security frameworks to ensure that systems are reliable, scalable, and secure.

Your day to day:

• Infrastructure Security Design & Implementation: Develop, implement, and maintain robust security architectures and controls for cloud and on-premises infrastructures, supporting business growth while ensuring security best practices are followed.

• Threat Management: Proactively monitor and respond to security incidents, vulnerabilities, and threats, applying advanced techniques to safeguard systems from cyber-attacks.

• System Hardening & Configuration: Ensure that all infrastructure systems (e.g., servers, databases, networks) are securely configured and maintained with the latest security patches and updates, following industry standards like CIS benchmarks.

• Network Security: Implement and manage firewalls, VPNs, IDS/IPS, and other network security technologies to secure connectivity and prevent unauthorized access across the company’s digital assets.

• Incident Response & Remediation: Lead efforts in incident detection, response, and remediation for infrastructure-related security incidents, ensuring rapid mitigation and future prevention.

• Collaboration & Integration: Work closely with our IT and software engineering teams to integrate security into system development and provide security guidance where needed.

• Compliance & Best Practices: Ensure compliance with relevant data protection laws (e.g., GDPR), security frameworks, and internal policies, contributing to audits and risk assessments where required.

• Automation & Optimisation: Identify opportunities for automation within security operations, from threat detection to patch management, to drive efficiency and scalability.

• Continuous Improvement: Stay up to date with emerging security trends, vulnerabilities, and technologies, and continually improve security processes and policies to adapt to a dynamic threat landscape., At Policy Expert, we are committed to fostering an inclusive and supportive environment for all candidates. If you require any reasonable adjustments during the interview process to accommodate your needs, please do not hesitate to let us know. We are dedicated to ensuring every candidate has an equal opportunity to succeed and will work with you to provide the necessary support.

• Experience in infrastructure security engineering or a related role, ideally within the financial or insurance sectors.

• Technical Expertise: Strong knowledge of cloud (Azure, O365) and server infrastructure, networks, firewalls, and endpoint systems.

• Security Tools & Technologies: Proficiency with security tools such as SIEM, IDS/IPS, vulnerability scanners, firewalls, endpoint protection, alert and remediation, and encryption technologies.

• Certifications: Relevant certifications such as CISSP, CISM, CCSP, CEH, or AWS/Azure security certifications are highly desirable.

• Scripting & Automation: Experience in automating security tasks using scripting languages (PowerShell).

• Analytical Skills: Strong analytical and problem-solving skills with the ability to think critically and adapt to fast-paced environments.

• Communication: Excellent written and verbal communication skills, with the ability to translate complex security issues into business-friendly language.

This role will be based in our London or Milton Keynes office working 3-4 days in the office

Generous Pension contribution scheme

Private medical & Dental cover

Learning budget of £1,000 a year + Study leave (with encouragement to use it)

Enhanced maternity & paternity

Travel season ticket loan

️ Access to a wide selection of London O2 events and use of a Private Lounge

Employee Wellbeing Programme