At a Glance
- Tasks: Design and deliver secure digital solutions in high-stakes environments.
- Company: Join a leading tech firm focused on security and innovation.
- Benefits: Competitive salary, flexible work schedule, and opportunities for professional growth.
- Other info: Work in a dynamic environment with excellent career advancement potential.
- Why this job: Make a real difference in critical operations with cutting-edge security technology.
- Qualifications: Experience in security tooling, identity solutions, and Agile methodologies required.
The predicted salary is between 55000 - 65000 £ per year.
As a Security Engineer, you'll help design, build, and deliver secure digital solutions in highly secure environments. You'll work alongside engineers, architects, and delivery specialists to develop technology that enables faster, safer decision-making for critical operations.
We are looking for someone who has experience with deploying and managing both security tooling (vulnerability scanning, EDR Agents, etc.) and identity solutions (Directory services, IdPs, Privileged Access Management solutions). You will need to have a basic understanding of threat frameworks (such as ATT&CK) and MOD assurance policies, as well as experience working at a technical low design level. Finally, you will need knowledge and experience of Agile, DevSecOps, CI/CD Principles and their application in secure environments.
Your work may include:
- Credential Lifecycle Management: Manually creating or bulk-importing passwords, SSH keys, and API keys. Configuring and verifying Remote Password Changing (RPC) to ensure credentials rotate on a set schedule without service interruption. Checking our Servers can successfully communicate with target systems to validate that stored credentials are still correct.
- Discovery & Network Visibility: Running regular Discovery scans across Active Directory and network segments to identify new privileged accounts, service accounts, and dependencies. Mapping how service accounts are used by Windows Services, Scheduled Tasks, or IIS Application Pools to ensure rotation doesn't break critical systems.
- System Maintenance & Performance: Proactive management of technical vulnerabilities and system security. Monitoring the status of Distributed Engines (DE) to ensure they are online and processing tasks like heartbeats and password changes without latency. Monitor and improve performance and ensure all secrets are bound to launchers, and secret templates are used and updated as required. Configuring and verifying automated database backups (full, differential, and log) to meet Recovery Point Objectives (RPO). Applying security patches and upgrades to our platforms. Maintain the Licenses/certifications and update where required. Check the results of recent Discovery scans to see if new privileged accounts, service accounts, or dependencies were found.
- Access Governance: Managing Role-Based Access Control (RBAC) by creating roles, defining folder structures, and setting granular permissions for users and groups.
- Audit & Compliance: Generating and reviewing audit logs and reports (e.g., most active users, failed heartbeats) to detect unusual activity and prove compliance. Configuring launchers to record privileged sessions, allowing or disallowing for full keystroke and video audits of administrative work.
- Technical Troubleshooting: Resolving issues related to Firewall requests, load balancer configuration.
- Security Oversight: Monitor Active Sessions: Session Monitoring for any currently active privileged sessions, particularly on high-value assets like Domain Controllers. Troubleshoot any Remote Password Changing (RPC) failures from the previous 24 hours to prevent account lockouts or "stale" credentials. Correlate server alerts with your SIEM to investigate suspicious activity, such as multiple failed login attempts or large-scale secret exports.
Security Clearance: Due to the nature of the work, candidates must be UK sole nationals and hold current SC clearance.
Security Engineer - SC Cleared in Hampshire employer: Fuel Recruitment
As a Security Engineer with us, you'll be part of a dynamic team dedicated to delivering secure digital solutions in a highly secure environment. We pride ourselves on fostering a collaborative work culture that encourages innovation and professional growth, offering opportunities for continuous learning and development. Located in a vibrant area, our company provides a supportive atmosphere where your contributions are valued, and you can make a meaningful impact on critical operations.
StudySmarter Expert Advice🤫
We think this is how you could land Security Engineer - SC Cleared in Hampshire
✨Tip Number 1
Network, network, network! Get out there and connect with professionals in the security engineering field. Attend meetups, webinars, or even local tech events. You never know who might have a lead on your dream job!
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your projects related to security tooling and identity solutions. This gives potential employers a tangible look at what you can do and sets you apart from the crowd.
✨Tip Number 3
Prepare for interviews by brushing up on your knowledge of threat frameworks and MOD assurance policies. Be ready to discuss how you've applied Agile and DevSecOps principles in your previous roles. Confidence is key!
✨Tip Number 4
Don't forget to apply through our website! We make it easy for you to find and apply for positions that match your skills. Plus, it shows you're genuinely interested in joining our team!
We think you need these skills to ace Security Engineer - SC Cleared in Hampshire
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Security Engineer role. Highlight your experience with security tooling, identity solutions, and any relevant frameworks like ATT&CK. We want to see how your skills match what we're looking for!
Showcase Your Projects:Include specific projects or experiences where you've deployed security measures or managed vulnerabilities. This gives us a clear picture of your hands-on experience and how you can contribute to our team.
Be Clear and Concise:When writing your application, keep it clear and to the point. Use bullet points for key achievements and avoid jargon unless it's relevant. We appreciate straightforward communication!
Apply Through Our Website:Don't forget to apply through our website! It’s the best way for us to receive your application and ensures you’re considered for the role. We can't wait to hear from you!
How to prepare for a job interview at Fuel Recruitment
✨Know Your Security Tools
Make sure you’re well-versed in the security tooling mentioned in the job description, like vulnerability scanning and EDR Agents. Be ready to discuss your hands-on experience with these tools and how you've used them to enhance security in previous roles.
✨Understand Threat Frameworks
Brush up on threat frameworks such as ATT&CK and MOD assurance policies. You might be asked to explain how these frameworks influence your approach to security engineering, so having specific examples from your past work can really set you apart.
✨Showcase Agile and DevSecOps Knowledge
Since the role involves Agile and DevSecOps principles, be prepared to talk about how you’ve applied these methodologies in secure environments. Share any relevant projects where you integrated security into the development lifecycle.
✨Prepare for Technical Scenarios
Expect technical questions or scenarios during the interview. Practice explaining your troubleshooting process for issues like Firewall requests or RPC failures. Being able to articulate your thought process will demonstrate your problem-solving skills effectively.
