At a Glance
- Tasks: Protect our IT infrastructure and sensitive data from cyber threats.
- Company: Join Merlin Entertainments, a leader in creating unforgettable guest experiences.
- Benefits: Enjoy 33 days holiday, Merlin passes, discounts, and ongoing training.
- Why this job: Make a real impact in securing entertainment experiences for millions.
- Qualifications: 3+ years in information security and strong technical skills required.
- Other info: Dynamic, fast-paced environment with great career growth opportunities.
The predicted salary is between 36000 - 60000 Β£ per year.
Location: London/Hybrid
Hours: 40 hours per week
Contract: Permanent - Salaried
At Merlin Entertainments, our purpose is simple but powerful: to bring joy, create connections and make memories. Merlin is embarking on an exciting Digital and Data Transformation focused on enhancing the end-to-end guest journey in our attractions. As we continue our ambitious global transformation journey, technology plays a critical role in enabling sustainable growth and unforgettable guest experiences across our iconic destinations.
As an Information Security Engineer at Merlin Entertainments, you will play a critical role in safeguarding our global IT infrastructure, networks, and sensitive data. Reporting to the Information Security Manager, you will design, implement, and maintain robust security controls to protect against cyber threats, ensuring the confidentiality, integrity, and availability of our systems. This is an exciting opportunity to contribute to the security of a dynamic, guest-focused entertainment company with a diverse digital footprint, including ticketing platforms, guest data management, and operational technologies across theme parks and attractions.
- Security Solutions Design, implement, and manage security solutions, including firewalls, intrusion detection/prevention systems, endpoint protection, and vulnerability management tools. Conduct regular security assessments, penetration testing, and vulnerability scans to identify and remediate risks in networks, applications, and cloud environments. Monitor systems for security incidents, investigate breaches, and lead response efforts in collaboration with the IT team. Develop and maintain security policies, standards, and procedures in line with industry best practices and compliance requirements (e.g., GDPR, PCI DSS, ISO). Collaborate with cross-functional teams (IT, Operations, Development) to integrate security into new projects, system changes, and digital transformations. Perform threat modelling and risk assessments for emerging technologies and attraction-related systems. Stay up to date with the latest cyber threats, vulnerabilities, and security trends, providing recommendations to enhance our defences. Support security awareness training and educate staff on best practices. Participate in incident response planning, audits, and compliance reporting.
- Collaboration & Integration Work closely with apps, data and DevOps teams to ensure that services and solutions meet the requirements of data integration, processing, and analytics workloads. Liaise with third-party vendors and managed service providers for escalations and issue resolution.
- Security and Compliance Follow and enforce access control and identity management policies across platforms.
- Reporting and Communication Communicate clearly with internal stakeholders about planned maintenance, service issues, and enhancements. Provide documentation and contribute to knowledge bases for operational support and onboarding.
Qualifications & Experience
- Bachelor's degree in computer science, Information Technology, Cybersecurity, or a related field (or equivalent experience).
- 3+ years of experience in information security engineering or a similar role.
- Strong technical knowledge of security tools and technologies (e.g., SIEM, firewalls, IDS/IPS, endpoint security, encryption).
- Experience with cloud security (e.g., AWS, Azure), network security, and vulnerability management.
- Relevant certifications such as CISSP, CompTIA Security+, CEH, or equivalent are highly desirable.
- Excellent problem-solving skills with the ability to analyse complex security issues and implement effective solutions.
- Strong communication skills to collaborate with technical and non-technical stakeholders.
- Ability to work in a fast-paced environment and manage multiple priorities.
- Passion for entertainment and a commitment to protecting guest experiences through secure systems.
- Organisational and project management skills, with a focus on delivering high-quality outcomes.
- Adaptability and a growth mindset, with a willingness to embrace new technologies and methodologies.
Benefits
- 'Enjoy the Ride' Merlin Annual Passes - 6 in total per year, 1 for you, plus 5 to gift to loved ones.
- Merlin Magic Pass - 20 free tickets for you, your family and friends to enjoy all our Merlin Attractions across the world rising to 40 after a year's service.
- 33 days holiday (including bank holidays).
- Company bonus.
- Private pension scheme.
- 40% discount online off LEGO.
- 25% discount in our on-site retail shops and restaurants.
- Ongoing training and development opportunities.
- Plus, many moreβ¦
If you have any questions or if you require any assistance, because of a disability or medical condition, please contact us by email and one of the team will get back to you as soon as possible.
Pay Range: Competitive
Information Security Engineer in London employer: Merlin Entertainments - Corporate
Contact Detail:
Merlin Entertainments - Corporate Recruiting Team
StudySmarter Expert Advice π€«
We think this is how you could land Information Security Engineer in London
β¨Tip Number 1
Network like a pro! Attend industry meetups, conferences, or webinars related to information security. It's a great way to meet potential employers and learn about job openings that might not be advertised.
β¨Tip Number 2
Show off your skills! Create a portfolio showcasing your projects, certifications, and any relevant experience. This can really set you apart during interviews and give employers a taste of what you can bring to the table.
β¨Tip Number 3
Donβt just apply blindly! Tailor your approach for each application. Research the company, understand their values, and align your skills with their needs. This shows genuine interest and can make a big difference.
β¨Tip Number 4
Apply through our website! Weβve got a streamlined process that makes it easy for you to showcase your talents. Plus, itβs a direct line to us, so we can see your application right away!
We think you need these skills to ace Information Security Engineer in London
Some tips for your application π«‘
Tailor Your CV: Make sure your CV is tailored to the Information Security Engineer role. Highlight your relevant experience, especially in security solutions and compliance, to show us youβre the perfect fit for our team.
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why youβre passionate about information security and how your skills align with our mission at Merlin. Keep it engaging and personal!
Showcase Your Technical Skills: We want to see your technical prowess! Be sure to mention specific tools and technologies youβve worked with, like firewalls or cloud security, to demonstrate your expertise in the field.
Apply Through Our Website: Donβt forget to apply through our website! Itβs the best way for us to receive your application and ensures youβre considered for this exciting opportunity. We canβt wait to hear from you!
How to prepare for a job interview at Merlin Entertainments - Corporate
β¨Know Your Security Tools
Make sure youβre well-versed in the security tools and technologies mentioned in the job description, like SIEM, firewalls, and endpoint protection. Be ready to discuss your hands-on experience with these tools and how you've used them to tackle security challenges.
β¨Showcase Your Problem-Solving Skills
Prepare to share specific examples of complex security issues you've faced and how you resolved them. Use the STAR method (Situation, Task, Action, Result) to structure your answers, highlighting your analytical skills and practical solutions.
β¨Understand Compliance Requirements
Familiarise yourself with compliance standards like GDPR and PCI DSS. Be prepared to discuss how youβve implemented security measures that align with these regulations in previous roles, as this will show your understanding of the legal landscape surrounding information security.
β¨Communicate Effectively
Since you'll be collaborating with various teams, practice explaining technical concepts in simple terms. Think about how you can convey your ideas clearly to both technical and non-technical stakeholders, as strong communication is key in this role.