At a Glance
- Tasks: Manage security posture and protect applications from external threats.
- Company: Award-winning company known for its great culture and flexibility.
- Benefits: Competitive salary, flexible work hours, and a supportive team environment.
- Other info: Opportunities for growth and learning in a collaborative atmosphere.
- Why this job: Join a dynamic team and make a real impact on security management.
- Qualifications: 3+ years in penetration testing and strong knowledge of security vulnerabilities.
The predicted salary is between 50000 - 60000 £ per year.
About Us
Our mission is simple: we want to set people free to do meaningful work. People love our software--and it turns out that people love working here too. We’ve been recognized as a "Best Company to Work For", and we’re proud of our team for receiving awards for workplace effectiveness and flexibility.
What You’ll Do
As our Security Engineer, you’ll be responsible for managing our security posture as well as keeping our application safe from external threats. Our ideal Security Engineer will be able to manage IT-related security issues, such as firewall management, HIDS/HIPS configuration, log monitoring, and audit compliance (SOC II). You will ensure that our software application is both manually and automatically pentested for security vulnerabilities (both Red Team and Blue Team exercises), and be a decision maker in all things security management – able to "pull the plug" on a feature, application, or other business function if it represents a significant risk to the company.
You Will
- Conduct penetration tests against web applications infrastructure
- Validate security on new hardware and software infrastructure
- Assist front-line company representatives with security questions
- Manage firewall rules and internal pentesting
- Manage SOC II controls and external pentesting
- Manage priorities through backlog management system (Jira)
Come to work, do great things, then go home!
What You Need To Get The Job Done
- 3+ years experience performing penetration testing (against web applications)
- Experience securing cloud-based infrastructures and solutions
- Previous experience working on an information security team
- Advanced knowledge of common security vulnerabilities (OWASP) and best practices
- Familiarity with SOC II controls and how to review them
- Experience in other technical roles (SysAdmin, Helpdesk, etc.)
- Strong understanding of Linux server environments
- Experience with Kanban and Agile DevOps workflows
- A good attitude and willingness to learn – you’ll be with great people.
What Will Make Us REALLY Love You
- You have a degree in CS, IT, or similar field
- CISSP, Security+, or other security related or linux or cloud related certifications
- Previous scripting experience (Python, Perl, Ruby, or PHP)
- You possess strong time prioritization skills
- You are proactive and look for ways to continuously increase efficiency
- We can see that you have a measured demeanor that assumes the best of people and respects co-workers.
- Real world examples of demonstrated technical leadership
What You’ll Love About Us
Great Company Culture.
IT Security Engineer employer: October
At our company, we pride ourselves on fostering a vibrant work culture that prioritises flexibility and employee satisfaction, making us a recognised 'Best Company to Work For'. As an IT Security Engineer, you'll not only play a crucial role in safeguarding our software but also benefit from ample opportunities for professional growth and development within a supportive team environment. Join us in a location that champions meaningful work and innovation, where your contributions are valued and rewarded.
StudySmarter Expert Advice🤫
We think this is how you could land IT Security Engineer
✨Tip Number 1
Network like a pro! Reach out to current employees on LinkedIn or at industry events. Ask them about their experiences and share your passion for IT security – it could lead to a referral!
✨Tip Number 2
Show off your skills! Create a personal project or contribute to open-source software that showcases your penetration testing abilities. This gives you something tangible to discuss during interviews.
✨Tip Number 3
Prepare for the technical interview by brushing up on common security vulnerabilities and best practices. Be ready to discuss real-world scenarios where you've tackled security issues head-on.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who are genuinely interested in joining our team!
We think you need these skills to ace IT Security Engineer
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the IT Security Engineer role. Highlight your experience with penetration testing, firewall management, and any relevant certifications. We want to see how your skills match up with what we’re looking for!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you’re passionate about security and how your previous experiences have prepared you for this role. Let us know what makes you tick and why you want to join our team.
Show Off Your Technical Skills:Don’t hold back on showcasing your technical skills in your application. Mention your familiarity with SOC II controls, cloud-based infrastructures, and any scripting languages you know. We love seeing candidates who can bring their technical prowess to the table!
Apply Through Our Website:We encourage you to apply through our website for a smoother process. It’s the best way for us to receive your application and ensures you don’t miss out on any important updates. Plus, it shows you’re keen to join us at StudySmarter!
How to prepare for a job interview at October
✨Know Your Stuff
Make sure you brush up on your knowledge of common security vulnerabilities, especially those listed in the OWASP Top Ten. Be ready to discuss how you've tackled these issues in past roles, as well as your experience with penetration testing and firewall management.
✨Showcase Your Experience
Prepare specific examples from your previous work that highlight your skills in managing IT-related security issues. Talk about your hands-on experience with cloud-based infrastructures and how you've contributed to SOC II compliance in your past roles.
✨Be Ready for Technical Questions
Expect technical questions that will test your understanding of security protocols and practices. Brush up on your knowledge of Linux server environments and be prepared to explain your approach to securing applications and conducting audits.
✨Demonstrate Your Team Spirit
Since you'll be working closely with other teams, show that you're a team player. Share examples of how you've collaborated with front-line representatives or other departments to address security concerns, and highlight your willingness to learn and adapt.
