At a Glance
- Tasks: Lead cyber security initiatives and protect our IT infrastructure from evolving threats.
- Company: Join XPS Group, a top pensions consultancy with a collaborative culture.
- Benefits: Enjoy competitive salary, flexible holidays, healthcare plans, and volunteer opportunities.
- Other info: Dynamic team environment with excellent career growth and mentoring opportunities.
- Why this job: Make a real impact in cyber security while working with cutting-edge technologies.
- Qualifications: Experience in cloud security, vulnerability management, and relevant certifications required.
The predicted salary is between 60000 - 80000 β¬ per year.
Location: Reading
Grade: Consultant
Employment Type: Permanent, Full Time Hybrid
About XPS Group: XPS Pensions Group is no ordinary company. We have earned numerous awards and accolades, making us an industry leader in Pensions Consultancy. As the largest pure pensions consultancy in the UK, we are a team of approximately 2000 employees spread across 15 locations nationwide. Listed on the London Stock Exchange Main Market, we pride ourselves on our ability to think and act differently, offering expert advice to over 1600 pension schemes and administering pensions for over 1,000,000 members.
About the Team: XPS Cyber Security is an expanding team made up of internal cyber security engineers and cyber security operations analysts with an external 24/7 Security Operations Centre. The Senior Cyber Security Engineer role will be challenged with researching and implementing the latest technologies in the industry. This environment is highly technical and collaborative. Reporting to the Cyber Security Engineering Manager, the Senior Cyber Security Engineer will perform daily security engineering tasks and assist with security hardening projects to protect XPS Group's IT infrastructure, networks and data.
Key Responsibilities:
- Use expert security knowledge with a particular focus in cloud security, network security, perimeter defence, attack surface management and system hardening to minimise risk.
- Own cloud security posture and attack surface management.
- Support the implementation of security controls across XPS, with a particular focus in cloud environments (e.g. Azure inc. cloud native applications).
- Promote best-practice, secure design principles, standards, and threat modelling into IT, projects and development teams.
- Identify and mitigate security risks early during change control and software development lifecycles (SDLC).
- Contribute to the selection, evaluation, and implementation of best-in-class security tools and processes.
- Develop an understanding of the threats, risks, vulnerabilities and evolving attack vectors facing the business.
- Assist and advise on security training, be able to mentor and drive awareness programmes tailored to XPS needs.
- Assist the wider security team with timely security incident management, security training, and reviewing supplier/client information security questionnaires.
Due to the changing nature of the business, the job holder may from time to time be required to undertake other activities of a similar nature that fall within their capabilities.
Your Profile:
Essential:
- Experienced security engineer with demonstrable detailed knowledge of security products, Cloud Security, Web Application Firewalls, access control, AV, email and web security gateways, Artificial Intelligence, load-balancers, ACLs, TCP/IP, routing and switching.
- Excellent written and spoken communication skills with ability to create, update and maintain documentation/network diagrams.
- Knowledge of current and future security initiatives e.g. OWASP standards, SASE, intelligence led penetration testing, zero-trust, threat centric security and risk-based vulnerability management.
- Be a security leader, with ability to work collaboratively with IT, wider teams, end users, and mentor IT/security colleagues on security principles where necessary.
- Has relevant experience and certification in security engineering e.g. CISSP, SANS GCIA, Comptia Security+ and/or CCNA/CCNP or equivalent qualifications.
- Detailed understanding of Security Infrastructure design, IT Security best practice and hardening standards (e.g. CIS Benchmarks).
- Detailed understanding of common IT protocols, infrastructure and systems e.g. Networks, Domain management and virtualised infrastructure.
- Willing to travel to other locations as and when required.
Desirable:
- Strong background in threat modelling.
- Computer Science degree, or relevant experience.
- Knowledge of ISO27001, Cyber Essentials Plus and Cloud certification e.g. CSA STAR.
What We Offer: Enjoy a competitive salary, annual discretionary bonus, and 25 days' holiday with buy/sell flexibility. Benefits include pension matching, healthcare plans, life assurance, and retailer discounts. We support our team with a flexible benefits scheme, employee assistance, and digital GP service. Participating in volunteering events is encouraged with paid volunteer days available. Referral bonuses are offered for introducing suitable candidates to XPS.
How to Apply: Interested candidates should submit applications below or contact recruitment@xpsgroup.com. Join XPS Group and contribute to a dynamic and inclusive workplace.
Equal Opportunity Statement: XPS Group is committed to diversity and equal opportunities. We welcome applications from all candidates, irrespective of sex, race, disability, sexual orientation, religion, or belief. As a Disability Confident employer, we ensure accessible and supportive work settings for all employees.
Eligibility: Any employment offer made will be conditional upon you satisfying DBS Disclosure checks, Employment or educational references, Satisfactory credit checks and eligibility to work in the UK before an offer can be made. XPS Group is not able to provide sponsorship to employees.
Who are we: To find out more please visit: www.xpsgroup.com
Senior Cyber Security Engineer employer: XPS Pensions
XPS Group is an exceptional employer, offering a dynamic and inclusive work environment in Reading, where innovation in cyber security thrives. With a strong focus on employee growth, competitive benefits including flexible holiday options, healthcare plans, and opportunities for volunteering, we empower our team to excel while maintaining a healthy work-life balance. Join us to be part of a leading pensions consultancy that values collaboration and professional development.
StudySmarter Expert Adviceπ€«
We think this is how you could land Senior Cyber Security Engineer
β¨Tip Number 1
Network like a pro! Get out there and connect with people in the cyber security field. Attend meetups, webinars, or even local events. You never know who might have the inside scoop on job openings or can refer you directly to hiring managers.
β¨Tip Number 2
Show off your skills! Create a portfolio showcasing your projects, certifications, and any relevant work you've done. This is your chance to demonstrate your expertise in cloud security and vulnerability management, making you stand out from the crowd.
β¨Tip Number 3
Prepare for interviews by brushing up on common cyber security scenarios. Be ready to discuss how you would handle specific security challenges or incidents. Practising these responses will help you feel more confident and articulate during the interview.
β¨Tip Number 4
Donβt forget to apply through our website! Itβs the best way to ensure your application gets seen by the right people. Plus, it shows youβre genuinely interested in joining XPS Group and contributing to our awesome team.
We think you need these skills to ace Senior Cyber Security Engineer
Some tips for your application π«‘
Tailor Your CV:Make sure your CV is tailored to the Senior Cyber Security Engineer role. Highlight your experience in cloud security, vulnerability management, and any relevant certifications. We want to see how your skills align with what we're looking for!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're passionate about cyber security and how you can contribute to our team. Be sure to mention specific projects or experiences that relate to the job description.
Show Off Your Communication Skills:Since excellent written communication is key for this role, make sure your application is clear and concise. Use proper grammar and structure to demonstrate your ability to create and maintain documentation, just like you would in the job!
Apply Through Our Website:We encourage you to apply through our website for a smoother process. It helps us keep track of applications and ensures you get all the updates directly from us. Plus, it shows you're keen on joining the XPS Group family!
How to prepare for a job interview at XPS Pensions
β¨Know Your Stuff
Make sure you brush up on your knowledge of cloud security, network security, and the latest technologies in the industry. Be ready to discuss specific tools and methodologies you've used in previous roles, especially around vulnerability management and penetration testing.
β¨Showcase Your Communication Skills
Since this role involves collaboration with various teams, practice articulating complex security concepts in a clear and concise manner. Prepare examples of how you've successfully communicated security principles to non-technical stakeholders.
β¨Demonstrate Leadership Qualities
Be prepared to discuss instances where you've taken the lead on security projects or mentored colleagues. Highlight your ability to promote best practices and drive awareness programmes tailored to the needs of the organisation.
β¨Stay Current with Trends
Familiarise yourself with current security initiatives like OWASP standards and zero-trust models. Be ready to discuss how these trends impact the role and how you can contribute to implementing them at XPS Group.
