At a Glance
- Tasks: Design and implement network security controls to protect our high-performance enterprise network.
- Company: Join the London Metal Exchange, the global hub for industrial metals trading.
- Benefits: Enjoy a competitive salary, health benefits, and opportunities for professional growth.
- Other info: Be part of a diverse team committed to innovation and collaboration.
- Why this job: Make a real impact in network security while working with cutting-edge technologies.
- Qualifications: 5+ years in network security with relevant certifications and hands-on experience.
The predicted salary is between 70000 - 90000 £ per year.
About the London Metal Exchange: The London Metal Exchange (LME) is the world centre for industrial metals trading. Most of the world’s global non-ferrous futures business is conducted on the LME’s three trading platforms totalling $21 trillion, 191 million lots and 4 billion tonnes notional with a market open interest high of 2.1 million lots in 2025. The metals community uses the LME, an HKEX Group company, as a venue to transfer or take on price risk, as a physical market of last resort and as the provider of transparent global reference prices.
Overall Purpose of Role: As a Network Security Specialist, you will help design, implement and govern the network security controls that protect our modern, high‑performance enterprise network. You will take a hands‑on role in shaping the network security roadmap, defining security policies and standards that drive the adoption of Zero Trust and micro‑segmentation across the organisation. Working within the Connectivity Engineering Team, you will collaborate closely with Information Security, Platform, Infrastructure and Application teams to ensure security is embedded by design. Your expertise will be applied across on‑premises, cloud, and containerised environments, ensuring consistent and robust protection across all connectivity layers. You will also support the organisation’s LAN, WAN, Campus and Data Centre network services, ensuring reliability, resilience and high performance.
You will maintain and develop core network standards across related systems, coordinate network activities across multiple technology projects, contribute deep technical expertise and produce both high‑ and low‑level designs. As a subject matter expert, you will also provide 3rd‑line escalation support when required. This role reports directly to the Network Manager and may include participation in an on‑call rota, as well as occasional evening and weekend work. TOIL or overtime compensation will be available.
Responsibilities
- Design, implement and maintain enterprise network security controls including firewalls, proxies and secure access services aligned to business and regulatory requirements.
- Act as the technical authority for Fortinet, PaloAltoNetworks and Zscaler platforms.
- Ensure security policies are consistently enforced across data centre, campus, cloud and hybrid environments.
- Lead complex troubleshooting of network security issues, balancing security, performance and availability.
- Help to define the network security roadmap, aligned with wider technology and security strategies.
- Design and evolve Zero Trust network architectures, including identity‑aware access and least‑privilege principles.
- Define and implement micro‑segmentation strategies for traditional and containerised workloads.
- Provide design input into new initiatives (cloud adoption, Kubernetes/OpenShift, automation, AI platforms).
- Evaluate new security technologies and patterns, producing clear recommendations and design artefacts.
- Develop and maintain network security standards, patterns and policy definitions.
- Ensure adherence to security policies through design reviews, operational controls and continuous improvement.
- Partner with Information Security to translate policy into enforceable technical controls.
- Support audits, risk assessments and regulatory obligations by providing clear evidence of control implementation.
- Act as a technical leader within the Connectivity Engineering Team, mentoring engineers and setting best practice.
- Work closely with Infrastructure, Platform, and Application teams to embed security by design.
- Provide subject‑matter expertise to project teams and senior stakeholders.
Desired Academic and Professional Qualifications
The ideal candidate will have experience working within an ITIL‑governed environment and established infrastructure support frameworks. They will hold a bachelor’s degree in Computer Science, Information Technology, or a related discipline, or possess an equivalent combination of education, technical training, and practical experience. Relevant industry certifications (e.g., PCNSE, NSE, CCNP Security, or CISSP) or substantial real‑world application are expected, while ITIL and/or PMI certification is considered an advantage.
Required Knowledge and Level of Experience
- Minimum 5 years’ experience operating in regulated, mission‑critical environments (e.g., financial services, critical infrastructure), with deep hands‑on expertise in enterprise network security engineering and large‑scale network infrastructure support.
- Experience defining and implementing network segmentation and micro‑segmentation strategies.
- Strong understanding of Zero Trust networking principles and identity‑aware access controls.
- Strong experience designing, implementing and optimizing firewall and proxy security policies.
- Deep hands‑on experience with PaloAltoNetworks (PAN‑OS, Panorama, policy design), Fortinet (FortiGate, FortiManager, FortiAnalyzer), and Zscaler (ZIA, ZPA, Zero Trust Exchange).
- Experience securing hybrid environments spanning on‑prem, cloud, and containerised platforms.
- Exposure to security controls and design for Kubernetes/OpenShift.
- Experience with automation and infrastructure‑as‑code approaches for deploying security controls.
- Wide exposure to routing, switching, load balancing and security architectures, with extensive operational and engineering experience.
- Strong grounding in core networking technologies and protocols, including TCP/IP, BGP, OSPF, VLANs, VRF, VPN, VXLAN, NAT, ACLs and DNS.
- Hands‑on experience with packet capture and network analytics and monitoring tools.
- Strong understanding of ITILv3 processes, including incident, problem and change management.
Skills and Competencies
- Ability to translate high‑level security policies into practical, scalable technical designs.
- Strong analytical and diagnostic skills for assessing complex network and security environments.
- Competence in designing and optimizing security architectures, network policies and segmentation models.
- Ability to work across hybrid and distributed environments (on‑prem, cloud, container platforms).
- Strong capability to apply automation and IaC concepts to enhance security controls and operational efficiency.
- Ability to collaborate with cross‑functional teams in highly regulated, high‑availability environments.
- Methodical working approach, aligned to ITILv3 best practices with proven ability to implement processes.
- Willingness to challenge existing approaches and drive change.
- Strong attention to detail with a focus on operational excellence.
- Comfortable working under pressure, with changing priorities.
- A strong delivery mindset, setting and achieving realistic and timely execution of project deliverables across the portfolio.
Personal Qualities
- Strong communicator with the ability to engage effectively with engineers, architects and senior management.
- Pragmatic and security‑focused, balancing robust controls with delivery‑oriented execution.
- Strategic thinker with a hands‑on approach, comfortable navigating fast‑paced and evolving technology landscapes.
- Analytical, detail‑driven and process‑oriented, able to translate complexity into clear actions and documentation.
- Skilled at influencing, persuading and guiding others toward the best technical and business outcomes.
- Collaborative team player and leader, with strong interpersonal skills and a passion for mentoring and developing others.
- Adaptable and dependable, able to work effectively across organisational boundaries and understand wider business drivers.
- Customer‑focused and responsive, demonstrating a strong sense of urgency and commitment to service.
- Innovative and proactive, continually seeking improvements in problem‑solving, processes, and solution design.
Equal Opportunity Employer
The LME is committed to creating a diverse environment and is proud to be an equal opportunity employer. In recruiting for our teams, we welcome the unique contributions that you can bring in terms of education, ethnicity, race, sex, gender identity, expression & reassignment, nation of origin, age, languages spoken, colour, religion, disability, sexual orientation and beliefs. In doing so, we want every LME employee to feel our commitment to showing respect for all and encouraging open collaboration and communication.
Network Security Specialist employer: The London Metal Exchange
The London Metal Exchange (LME) is an exceptional employer, offering a dynamic work environment in the heart of London, where innovation and collaboration thrive. As a Network Security Specialist, you will benefit from a culture that prioritises professional growth, with opportunities to lead cutting-edge security initiatives while working alongside industry experts. The LME's commitment to diversity and inclusion ensures that every employee's unique contributions are valued, making it a rewarding place to build your career in network security.
StudySmarter Expert Advice🤫
We think this is how you could land Network Security Specialist
✨Get Involved in the Cybersecurity Community
Diving into the cybersecurity community is key for landing that full-time gig. Join forums like Reddit's r/cybersecurity or attend local meetups to connect with industry veterans and other job seekers. Networking is everything in this field—don’t just be a passive lurker!
✨Show Off Your Skills with Capture the Flag Competitions
Participate in Capture the Flag (CTF) competitions; these are not just a fun way to boost your skills but also a chance to showcase your talent to potential employers. Many companies, including The London Metal Exchange, love seeing candidates who actively engage in these challenges.
✨Tailor Your Online Presence
Make sure your LinkedIn and any professional profiles reflect your cybersecurity expertise. Share your projects, whether they’re personal or from a previous role, to catch the eye of hiring managers. This is how they’ll find your passion and commitment to the field!
✨Apply Directly Through The London Metal Exchange
Don’t forget to head straight to our website and check out any openings for cybersecurity roles at The London Metal Exchange. Applying directly can sometimes give you an edge, especially if you can mention that you've been following our work or engaging in the community.
We think you need these skills to ace Network Security Specialist
Some tips for your application 🫡
Show off your technical skills:In cybersecurity, it's crucial to highlight your technical prowess. Make sure your CV showcases specific skills like network security, penetration testing, or threat analysis. If you have relevant certifications (like CEH or CISSP), pop those on the front page to grab attention!
Tailor your portfolio for the role:Even for a full-time role, a portfolio can set you apart. If you've worked on any cybersecurity projects—be it CTF challenges, security assessments, or research papers—include these in your application. This demonstrates not just your skills, but also your hands-on experience!
Use real-world examples:When writing your cover letter, don’t just stick to your qualifications. Share real-world examples of how you’ve tackled security issues or vulnerabilities. This gives the hiring team at The London Metal Exchange insight into your practical problem-solving abilities and makes your application memorable.
Demonstrate your passion for cybersecurity:Cybersecurity is an ever-evolving field, so show us that you’re always learning! Mention any recent courses, webinars, or industry events you’ve attended. This not only exhibits your enthusiasm but also signals to The London Metal Exchange that you’re committed to staying ahead in the game.
How to prepare for a job interview at The London Metal Exchange
✨Sharpen Your Technical Skills
For a role in cybersecurity, it’s essential to be up-to-date with the latest tools and techniques. Brush up on your knowledge of firewalls, intrusion detection systems, and vulnerability assessment tools. Be ready to discuss specific scenarios where you’ve applied these skills, as hands-on experience can really set us apart in interviews.
✨Prepare for Scenario-Based Questions
Expect the interviewers at The London Metal Exchange to throw in some hypothetical situations to see how you’d handle them. Think about common security breaches or incidents and be prepared to explain how you would respond. This not only shows your problem-solving skills but also your understanding of real-world cybersecurity challenges.
✨Highlight Your Certifications
Certifications like CompTIA Security+, CISSP, or CEH can give you a significant edge in a full-time role in cybersecurity. Make sure to mention these during your interview and be prepared to discuss what you learned through those certifications and how they relate to the position at The London Metal Exchange.
✨Show Your Passion for Cybersecurity
Since you’re going for a full-time gig, showing genuine enthusiasm for the field can make all the difference. Share any personal projects, blogs, or communities you’re part of that relate to cybersecurity. This not only showcases your passion but also your commitment to staying engaged in this ever-evolving field.