Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join our DevSecOps team to enhance cyber maturity and manage security technologies.
- Company: A specialist technology business in Glasgow focused on IT infrastructure and security.
- Benefits: Enjoy hybrid working, competitive salary, and a range of corporate perks.
- Why this job: Be part of a dynamic team, tackle real-world security challenges, and make a difference.
- Qualifications: Experience with SIEM, vulnerability management, and a strong understanding of security frameworks required.
- Other info: Opportunity for growth in a collaborative environment with a focus on innovation.
The predicted salary is between 48000 - 52000 £ per year.
Fantastic new permanent opportunity for an experienced IT Security Engineer with a broad background within IT Infrastructure, Security Engineering and Operations for this specialist technology business based in Glasgow.
As a specialist IT Security Engineer, you will work as part of their DevSecOps team based in Glasgow. The role will involve working closely with the wider technology teams to enhance their cyber maturity. Furthermore, it provides the opportunity to contribute towards the implementation and management of various security technologies.
Main responsibilities:- Analysing security events and incidents relating to internal and customer assets.
- Designing and developing SIEM security use cases.
- Designing and implementing security controls and secure configurations.
- Maintaining proactive vulnerability scanning ensuring that all known vulnerabilities are addressed in line with policy.
- Collaborating with development teams to implement secure development practices.
- Configuring and maintaining security tooling across the infrastructure.
- Collaborating on maturing security incident management processes and playbooks.
- Collaborating with third-party led security tests, assessments and audits of our information security policies, procedures, and systems.
- Identifying, assessing, managing, remediating, and tracking information security risks through our risk management framework and ensuring key risks are reported to the CISO.
- Performing regular internal security audits aligned to ISO/IEC 27001 and SOC2 controls.
- Developing our security awareness training programme aligned with internal security policies.
- Comfortable engaging with customers and internal stakeholders to discuss security related matters.
- Proven hands-on experience as a Security Engineer or similar working with tools such as SIEM, vulnerability management, endpoint detection & response (EDR), applications security, identity, and access management, etc.
- Ability to work in a small high performing team, collaborating with other technical resources whilst aligning to the security strategy.
- A security engineer with experience of learning, adapting and utilising different security technologies, including but not limited to private and cloud infrastructure.
- Technical knowledge and experience with SIEM, SOAR, IDPS, DDoS, Malware Protection, Vulnerability Management, and Application Security tooling, etc.
- Knowledge of Information Security frameworks (CIS, NIST, NCSC CAF), supporting processes and toolsets.
- Ability to breakdown and solve complex problems across multiple domains and successfully lead the recovery of major and/or complex security incidents.
- Knowledge and experience of threat hunting and problem-solving through reviewing logs and identifying anomalous activities.
For any further queries regarding the role, please contact Danny Palmer.
IT Security Engineer employer: Sanderson Recruitment Plc
Contact Detail:
Sanderson Recruitment Plc Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land IT Security Engineer
✨Tip Number 1
Familiarise yourself with the specific security tools mentioned in the job description, such as SIEM and vulnerability management systems. Having hands-on experience or even a solid understanding of these tools will help you stand out during interviews.
✨Tip Number 2
Engage with online communities or forums related to IT security. Networking with professionals in the field can provide insights into the latest trends and challenges, which you can discuss during your interview to demonstrate your passion and knowledge.
✨Tip Number 3
Prepare to discuss real-world scenarios where you've successfully managed security incidents or vulnerabilities. Being able to articulate your problem-solving process and the outcomes will showcase your practical experience and readiness for the role.
✨Tip Number 4
Research StudySmarter's approach to security and any recent initiatives they've undertaken. Showing that you understand our company culture and values, especially in relation to security, will help you connect with the interviewers and demonstrate your enthusiasm for joining our team.
We think you need these skills to ace IT Security Engineer
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in IT security, particularly with tools like SIEM and vulnerability management. Use keywords from the job description to demonstrate your fit for the role.
Craft a Strong Cover Letter: Write a cover letter that specifically addresses the responsibilities mentioned in the job description. Explain how your previous experiences align with their needs, especially in areas like incident management and security audits.
Showcase Relevant Skills: In your application, emphasise your hands-on experience with security technologies and frameworks. Mention any specific projects or achievements that demonstrate your ability to enhance cyber maturity and manage security risks.
Proofread Your Application: Before submitting, carefully proofread your application for any spelling or grammatical errors. A polished application reflects your attention to detail, which is crucial in the field of IT security.
How to prepare for a job interview at Sanderson Recruitment Plc
✨Showcase Your Technical Skills
Be prepared to discuss your hands-on experience with security tools like SIEM, EDR, and vulnerability management. Highlight specific projects where you've successfully implemented security measures or resolved incidents.
✨Understand the Company’s Security Frameworks
Familiarise yourself with the information security frameworks mentioned in the job description, such as CIS, NIST, and NCSC CAF. Demonstrating knowledge of these frameworks will show that you are aligned with their security strategy.
✨Prepare for Scenario-Based Questions
Expect questions that assess your problem-solving abilities in real-world scenarios. Think of examples where you've identified and remediated security risks or handled complex security incidents, and be ready to explain your thought process.
✨Emphasise Collaboration Skills
Since the role involves working closely with development teams and other stakeholders, be sure to highlight your experience in collaborative environments. Share examples of how you've successfully worked with others to enhance security practices.
