At a Glance
- Tasks: Design and deliver secure digital solutions in high-stakes environments.
- Company: Join a leading tech firm focused on security and innovation.
- Benefits: Competitive salary, flexible work schedule, and opportunities for professional growth.
- Other info: Work in a dynamic environment with excellent career advancement opportunities.
- Why this job: Make a real difference in critical operations while working with cutting-edge security technologies.
- Qualifications: Experience with security tools, identity solutions, and Agile methodologies required.
The predicted salary is between 55000 - 65000 £ per year.
As a Security Engineer, you'll help design, build, and deliver secure digital solutions in highly secure environments. You'll work alongside engineers, architects, and delivery specialists to develop technology that enables faster, safer decision-making for critical operations.
We are looking for someone who has experience with deploying and managing both security tooling (vulnerability scanning, EDR Agents, etc.) and identity solutions (Directory services, IdPs, Privileged Access Management solutions). You will need to have a basic understanding of threat frameworks (such as ATT&CK) and MOD assurance policies, as well as experience working at a technical low design level. Finally, you will need knowledge and experience of Agile, DevSecOps, CI/CD Principles and their application in secure environments.
Your work may include:
- Credential Lifecycle Management: Manually creating or bulk-importing passwords, SSH keys, and API keys. Configuring and verifying Remote Password Changing (RPC) to ensure credentials rotate on a set schedule without service interruption. Checking our Servers can successfully communicate with target systems to validate that stored credentials are still correct.
- Discovery & Network Visibility: Running regular Discovery scans across Active Directory and network segments to identify new privileged accounts, service accounts, and dependencies. Mapping how service accounts are used by Windows Services, Scheduled Tasks, or IIS Application Pools to ensure rotation doesn't break critical systems.
- System Maintenance & Performance: Proactive management of technical vulnerabilities and system security. Monitoring the status of Distributed Engines (DE) to ensure they are online and processing tasks like heartbeats and password changes without latency. Monitor and improve performance and ensure all secrets are bound to launchers, and secret templates are used and updated as required. Configuring and verifying automated database backups (full, differential, and log) to meet Recovery Point Objectives (RPO). Applying security patches and upgrades to our platforms. Maintain the Licenses/certifications and update where required. Check the results of recent Discovery scans to see if new privileged accounts, service accounts, or dependencies were found.
- Access Governance: Managing Role-Based Access Control (RBAC) by creating roles, defining folder structures, and setting granular permissions for users and groups.
- Audit & Compliance: Generating and reviewing audit logs and reports (e.g., most active users, failed heartbeats) to detect unusual activity and prove compliance. Configuring launchers to record privileged sessions, allowing or disallowing for full keystroke and video audits of administrative work.
- Technical Troubleshooting: Resolving issues related to Firewall requests, load balancer configuration.
- Security Oversight: Monitor Active Sessions: Session Monitoring for any currently active privileged sessions, particularly on high-value assets like Domain Controllers. Troubleshoot any Remote Password Changing (RPC) failures from the previous 24 hours to prevent account lockouts or "stale" credentials. Correlate server alerts with your SIEM to investigate suspicious activity, such as multiple failed login attempts or large-scale secret exports.
Security Clearance: Due to the nature of the work, candidates must be UK sole nationals and hold current SC clearance.
Security Engineer - SC Cleared employer: Fuel Recruitment
As a Security Engineer with us, you'll be part of a dynamic team dedicated to delivering secure digital solutions in a highly secure environment. We pride ourselves on fostering a collaborative work culture that encourages innovation and professional growth, offering opportunities for continuous learning and development. Located in a vibrant area, our company provides a supportive atmosphere where your contributions are valued, and you can make a meaningful impact on critical operations.
StudySmarter Expert Advice🤫
We think this is how you could land Security Engineer - SC Cleared
✨Tip Number 1
Network, network, network! Get out there and connect with folks in the industry. Attend meetups, webinars, or even just grab a coffee with someone who’s already in the role you want. It’s all about making those connections that could lead to your next opportunity.
✨Tip Number 2
Show off your skills! If you’ve got a portfolio of projects or contributions to open-source security tools, make sure to highlight them. Create a personal website or a GitHub profile where you can showcase your work and demonstrate your expertise in security tooling and identity solutions.
✨Tip Number 3
Prepare for interviews like a pro! Research common interview questions for Security Engineers and practice your responses. Be ready to discuss your experience with Agile, DevSecOps, and CI/CD principles, as well as how you’ve applied them in secure environments.
✨Tip Number 4
Don’t forget to apply through our website! We’re always on the lookout for talented individuals like you. Keep an eye on our job listings and make sure to submit your application directly to us for the best chance of landing that dream job.
We think you need these skills to ace Security Engineer - SC Cleared
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Security Engineer role. Highlight your experience with security tooling, identity solutions, and any relevant frameworks like ATT&CK. We want to see how your skills match what we're looking for!
Showcase Your Experience:In your application, don’t just list your previous jobs. Share specific examples of how you've deployed security solutions or managed vulnerabilities. We love seeing real-world applications of your skills!
Be Clear and Concise:Keep your application clear and to the point. Use bullet points where possible to make it easy for us to read through your experience and qualifications. We appreciate a well-structured application!
Apply Through Our Website:Don’t forget to apply through our website! It’s the best way for us to receive your application and ensures you’re considered for the role. We can’t wait to hear from you!
How to prepare for a job interview at Fuel Recruitment
✨Know Your Security Tools
Make sure you brush up on your experience with security tooling like vulnerability scanning and EDR agents. Be ready to discuss specific tools you've used, how you deployed them, and the impact they had on your previous projects.
✨Understand Threat Frameworks
Familiarise yourself with threat frameworks such as ATT&CK. Prepare to explain how you've applied these frameworks in past roles, especially in relation to identifying and mitigating risks in secure environments.
✨Showcase Your Agile Knowledge
Since Agile and DevSecOps are key components of this role, be prepared to share examples of how you've implemented CI/CD principles in your work. Highlight any challenges you faced and how you overcame them to ensure security was maintained throughout the process.
✨Prepare for Technical Scenarios
Expect technical questions or scenarios during the interview. Practice explaining your approach to tasks like credential lifecycle management or system maintenance. Being able to articulate your thought process will demonstrate your expertise and problem-solving skills.
