Sector 1440px by 600px

Cyber Engineer Home based but with travel to UK locations including London Competitive up to £75,000

Cyber Engineer

Location: Home based but with travel to UK locations including London |
Salary: Competitive up to £75,000 |
Posted: 13 May 2022 |
Closes: 29 May 2022 |
Job Type: Full Time and Permanent |
Region / Division: UK & Ireland |
Reference: G4S/MS/2304

Competitive salary, 5 weeks annual leave plus bank holidays, contributory pension scheme


Job Introduction:

This is an exciting opportunity for a Cyber Engineer to join our IT Team. We are looking for a new security guru to join our rapidly expanding cybersecurity team, ensuring the security of Google Workspace, Google Compute Platforms and AWS.  You will also be required to generate compliance data, analyse incident response, provide technical SIEM expertise and create scripts and programs to support the technical infosec function.  You will also have the skills to design and operate technical security enforcing controls.

In return we will offer a competitive salary of up to £75,000, 5 weeks holiday, plus bank holidays, entry into our contributor pension scheme, various employee discount schemes, Perks at work and free on-site parking.

Allied Universal®, a leading security and facility services company, provides proactive security services and cutting-edge smart technology to deliver tailored, integrated security solutions that allow clients to focus on their core business. Our acquisition of G4S in 2021 expands our footprint and infrastructure on a global and local level. Through our vast network of more than 800,000 employees, we leverage global best practices in communities all over the world. Operating in around more than 80 countries with revenues of $18 billion, we are supported by efficient processes and systems that can only come with scale to help deliver our promise locally: keeping people safe so our communities can thrive. We believe there is no greater purpose than serving and safeguarding customers, communities, and people in today’s world. Allied Universal is there for you™. For more information, please visit www.aus.com.


Role Responsibility:

The main responsibilities for the role of Cyper Security Engineer are:

  • Ensure the security of Google Workspace
    • Own the technical security of Google Workspace
    • Configure accounts to comply with policy, including making bulk changes
    • Design and own administrative roles and assign administrative rights
    • Configure Google Workspace logging, including to Big Query
    • Report on Google Workspace security configuration
    • Investigate incidents and alerts generated from Google Workspace, eg using Security Command Centre
    • Create security projects to enhance Google Workspace
    • Undertake Vault email searches
    • Configure email compliance rules
    • Configure identity management, eg SAML, OpenID Connect, oAuth
    • Must be familiar with tools such as: GAM, Security Investigation Tool, Vault
    • Must be an expert in Google Workspace security best practices and architecture
  • Ensure the security of Google Compute Platform
    • Own the technical security of GCP
    • Undertake vulnerability assessments using Tenable and other tools such as Burp, Metasploit, Nikto, etc
    • Undertake ad hoc scripting to generate compliance data relating to the environment
    • Respond to security alerts
    • Investigate alerts and other incidents via the Security Command Centre and other tools
    • Configure security logging to Big Query via pub sub
    • Configure Beyond Corp and IAP settings
    • Configure cloud armour
    • Configure GCP IAM
    • Create security projects to enhance Google Workspace, explore open source and other tools to build proof of concept and deploy
    • Must be an expert in GCP security best practices and architecture
    • Must be an expert in Google Beyond Corp architecture
  • Ensure the security of AWS
    • Own the technical security of AWS
    • Configure log analytics and Cloudwatch
    • Configure Security Manager and other tools
  • Generate compliance data
    • Using tools such as SQL, GCSQL and Big Query generate compliance reports and raise tickets for remediation
  • Provide the technical aspects of incident response
    • Own the technical aspects of incident response
    • Analyse logs
    • Create alerts for tools based on indicators of compromise
    • Respond to events
  • Provide technical SIEM expertise
    • Own the technical design for the internal SIEM
    • Be an expert in best practice design for SIEM and operational management
    • Configure Elasticsearch including via the API, configure Kibana
  • Create necessary scripts and programs to support the technical infosec function
    • Likely to include Linux shell scripting, Powershell
    • Likely to require coding against tool APIs using Python or similar
    • Integrate alerts with Google chat and other tools
  • Design and operate technical security enforcing controls
    • Anti virus, DNS filtering, vulnerability management, third party threat databases
    • Create automation scripts

 


The Ideal Candidate:

The Ideal Candidate for the Cyber Engineer role will be an expert in:

  • Linux
  • Windows
  • GCP security
  • AWS security
  • Network security defences (eg firewall, DNS, IDS)
  • Log investigation
  • Incident response and resolving incident issues “Blue Team”
  • Security testing tools and techniques(not full penetration testing) “Red Team”
  • Building from open source
  • Creatively introducing new security controls and tools, particularly adapting scripts from GitHub
  • Review of AV, EDR, security tool output
  • Common security tools such as Metasploit, Nikto, Shodan, Nessus, OpenVas
  • In addition, it would be desirable for the Cyber Engineer to be competent in Google Workspace, Scripting and SIEM

 

Please note, this role does not qualify for a visa under the current Government guidelines therefore to be considered for this role you must already have the right to work in the UK. Re-location costs will not be granted. 

The successful candidate will be required to provide original documentation for detailed screening and vetting processes. These documents may include your passport, driver's license, utility bill (dated in the last 3 months), HMRC letter, an original bank statement, an original payslip, your birth certificate, a valid share code.


Advanced Search:

Jobs that might be of interest: