Network Security Engineer (SOC) in London

An exciting opportunity for a passionate Network Security Engineer to join a unique, multi-national Information Management function. Ideal candidates should be committed to protecting our critical systems and ensuring the integrity and security of our network infrastructure.

Salary and Working Arrangement

• Salary: Circa £50,000 depending on experience + shift allowance
• Dynamic (hybrid) working: 5 days per week on-site due to workload classification, working a 24/7 Shift Pattern

Security Clearance

This role will require DV Clearance. Restrictions and/or limitations relating to nationality and/or rights to work may apply. As a minimum and after offer stage, all successful candidates will need to undergo HMG Basic Personnel Security Standard checks (BPSS) and a Security Check (SC) clearance, which are managed by the MBDA Personnel Security Team.

What we can offer you

• Company bonus: Up to £2,500 (based on company performance and will vary year to year)
• Pension: maximum total (employer and employee) contribution of up to 14%
• Overtime: opportunity for paid overtime
• Flexi Leave: Up to 15 additional days
• Enhanced parental leave: offers up to 26 weeks for maternity, adoption and shared parental leave; enhancements are available for paternity leave, neonatal leave and fertility testing and treatments
• Facilities: Fantastic site facilities including subsidised meals, free car parking and much more

The opportunity

Join our forward thinking team as a Network Security Engineer, where you will play a key role in safeguarding our organisations' network infrastructure as part of the 24x7 Internal Security Response (ISR) team. When not involved in incident response and triage activity with the SOC team, you will be responsible for designing, implementing and maintaining robust security solutions to protect against evolving threats. Collaborating with cross-functional teams, you will work on implementing changes securely, identifying vulnerabilities, managing security incidents and ensuring compliance with industry best practices.

The role will be involved in the optimisation of network security tools to remediate "purple team" highlighted areas identified for improvement. You will also have the opportunity to immerse your time into the standardisation of network tools. This is a dynamic opportunity to contribute to security initiatives, solve complex challenges, and have a direct impact on the overall resilience of our IT environment. If you are passionate about security and proactive defence, this role is the perfect fit. If you are looking to leverage your technical skills in a values-led company that values innovation and diversity, this is the place to make an impact.

What we’re looking for from you

ESSENTIALS

• Solid understanding of networking principles (TCP/IP, DNS, routing, switching, VLANS and load balancing)
• Strong expertise in configuring, maintaining and troubleshooting firewalls e.g. Cisco, Checkpoint, Palo Alto
• Demonstrable hands-on experience in next-gen firewalls and advancing security features like IPS/IDS, SSL decryption and deep packet inspection.
• Proven experience in managing secure proxy solutions (e.g. Bluecoat, F5) and the ability to implement policies for content filtering, SSL inspection and network traffic monitoring.
• In depth knowledge of security protocols such as IPSec, SSL / TLS, VPNs and two factor authentication.
• Understanding of network architectures and security zones (DMZ, internal networks).
• Proficient in monitoring technologies e.g. PRTG, Nagios.

DESIRABLES

• Understanding of cyber security capabilities and their integrations to networks infrastructure.
• Existing knowledge of / aptitude to learn Darktrace Antigena and Respond, Splunk ES or Log Rhythm tools.
• Strong ability to interpret complex information via use of packet capture in order to identify malicious traffic in detail, revealing attacker behaviours like C2, exploitation, lateral movement, or data exfiltration.
• Proven ability to review SOC alerting in collaboration with SOC analysts to effectively triage and manage Tier 1 SOC alerts to the appropriate outcome.
• Experience with LDAP, and application traffic flow root cause analysis.
• Previous experience to identify root cause from demonstrable understanding of the OSI Reference Model and the network communication protocols, including but not limited to DNS, HTTP/S, SSL, SMTP, FTP/S, LDAP/S. Demonstrable experience with Security Information Event Monitoring Tools and/or Network Packet Capture tools.

Our company: Peace is not a given, Freedom is not a given, Sovereignty is not a given. MBDA is a leading defence organisation. We are proud of the role we play in supporting the Armed Forces who protect our nations. We partner with governments to work together towards a common goal, defending our freedom.

We are proud of our employee-led networks, examples include: Gender Equality, Pride, Menopause Matters, Parents and Carers, Armed Forces, Ethnic Diversity, Neurodiversity, Disability and more. We recognise that everyone is unique, and we encourage you to speak to us should you require any advice, support or adjustments throughout our recruitment process.