At a Glance
- Tasks: Design and deliver secure digital solutions in high-security environments.
- Company: Join a leading tech firm focused on security and innovation.
- Benefits: Competitive salary, flexible working, and opportunities for professional growth.
- Other info: Work in a dynamic environment with excellent career advancement opportunities.
- Why this job: Make a real impact by enhancing security for critical operations.
- Qualifications: Experience with security tools, identity solutions, and Agile methodologies required.
The predicted salary is between 55000 - 65000 £ per year.
As a Security Engineer, you'll help design, build, and deliver secure digital solutions in highly secure environments. You'll work alongside engineers, architects, and delivery specialists to develop technology that enables faster, safer decision-making for critical operations.
We are looking for someone who has experience with deploying and managing both security tooling (vulnerability scanning, EDR Agents, etc) and identity solutions (Directory services, IdPs, Privileged Access Management solutions). You will need to have a basic understanding of threat frameworks (such as ATT&CK) and MOD assurance policies, as well as experience working at a technical low design level. Finally, you will need knowledge and experience of Agile, DevSecOps, CI/CD Principles and their application in secure environments.
Your work may include:
- Credential Lifecycle Management: Manually creating or bulk-importing passwords, SSH keys, and API keys. Configuring and verifying Remote Password Changing (RPC) to ensure credentials rotate on a set schedule without service interruption. Checking our Servers can successfully communicate with target systems to validate that stored credentials are still correct.
- Discovery & Network Visibility: Running regular Discovery scans across Active Directory and network segments to identify new privileged accounts, service accounts, and dependencies. Mapping how service accounts are used by Windows Services, Scheduled Tasks, or IIS Application Pools to ensure rotation doesn't break critical systems.
- System Maintenance & Performance: Proactive management of technical vulnerabilities and system security. Monitoring the status of Distributed Engines (DE) to ensure they are online and processing tasks like heartbeats and password changes without latency. Monitor and improve performance and ensure all secrets are bound to launchers, and secret templates are used and updated as required. Configuring and verifying automated database backups (full, differential, and log) to meet Recovery Point Objectives (RPO). Applying security patches and upgrades to our platforms. Maintain the Licenses/certifications and update where required. Check the results of recent Discovery scans to see if new privileged accounts, service accounts, or dependencies were found.
- Access Governance: Managing Role-Based Access Control (RBAC) by creating roles, defining folder structures, and setting granular permissions for users and groups.
- Audit & Compliance: Generating and reviewing audit logs and reports (e.g., most active users, failed heartbeats) to detect unusual activity and prove compliance. Configuring launchers to record privileged sessions, allowing or disallowing for full keystroke and video audits of administrative work.
- Technical Troubleshooting: Resolving issues related to Firewall requests, load balancer configuration.
- Security Oversight: Monitor Active Sessions: Session Monitoring for any currently active privileged sessions, particularly on high-value assets like Domain Controllers. Troubleshoot any Remote Password Changing (RPC) failures from the previous 24 hours to prevent account lockouts or "stale" credentials. Correlate server alerts with your SIEM to investigate suspicious activity, such as multiple failed login attempts or large-scale secret exports.
Security Clearance: Due to the nature of the work, candidates must be UK sole nationals and hold current SC clearance.
Locations
Security Engineer - SC Cleared in Farnborough, Hampshire employer: Fuel Recruitment
As a leading employer in the security engineering sector, we offer a dynamic work environment where innovation meets integrity. Our commitment to employee growth is reflected in our collaborative culture, providing opportunities for professional development and hands-on experience with cutting-edge technology in secure environments. With a focus on work-life balance, including flexible on-site arrangements, we ensure that our team members thrive both personally and professionally while contributing to critical operations.
StudySmarter Expert Advice🤫
We think this is how you could land Security Engineer - SC Cleared in Farnborough, Hampshire
✨Tip Number 1
Network, network, network! Get out there and connect with professionals in the security field. Attend meetups, webinars, or even local tech events. You never know who might have a lead on your dream job!
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your projects related to security engineering. This gives potential employers a tangible look at what you can do and sets you apart from the crowd.
✨Tip Number 3
Prepare for interviews by brushing up on your technical knowledge and soft skills. Practice common interview questions and scenarios specific to security engineering. We want you to feel confident and ready to impress!
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who are proactive about their job search!
We think you need these skills to ace Security Engineer - SC Cleared in Farnborough, Hampshire
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Security Engineer role. Highlight your experience with security tooling, identity solutions, and any relevant frameworks like ATT&CK. We want to see how your skills match what we're looking for!
Showcase Your Projects:Include specific projects or experiences where you've applied Agile, DevSecOps, or CI/CD principles in secure environments. This will help us understand how you approach problem-solving and your hands-on experience.
Be Clear and Concise:When writing your application, keep it clear and to the point. Use bullet points for key achievements and responsibilities. We appreciate straightforward communication that gets right to the heart of your qualifications.
Apply Through Our Website:Don't forget to apply through our website! It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it shows you're keen on joining the StudySmarter team!
How to prepare for a job interview at Fuel Recruitment
✨Know Your Security Tools
Make sure you brush up on your experience with security tooling like vulnerability scanning and EDR agents. Be ready to discuss specific tools you've used, how you deployed them, and the impact they had on your previous projects.
✨Understand Threat Frameworks
Familiarise yourself with threat frameworks such as ATT&CK. You might be asked to explain how these frameworks influence your approach to security engineering, so having a solid grasp of their principles will definitely give you an edge.
✨Showcase Your Agile Knowledge
Since Agile and DevSecOps are key in this role, prepare examples of how you've applied these methodologies in secure environments. Discuss any CI/CD principles you've implemented and how they improved security processes.
✨Prepare for Technical Questions
Expect technical questions related to credential management, access governance, and system maintenance. Review your past experiences and be ready to troubleshoot hypothetical scenarios, demonstrating your problem-solving skills and technical expertise.
