Information Security Engineer

Posted 09 January 2023
Salary £70000 - £80000 per annum
LocationLondon
Job type Permanent
DisciplineInfrastructure ​
ReferenceML-58
Contact NameMorgan Lingard

Job description

Information Security Engineer
London (Hybrid)
£70,000 - £80,000 + Excellent Benefits

Digital Waffle is working in partnership with a provider of software development, data analysis, and marketing. This is a fantastic opportunity for an enthusiastic Information Security Engineer.

Job Role
The Information Security Engineer will assist in evaluating and advising on architecture designs to ensure proper security processes and controls are in place, and assist in reviewing existing security configurations and methods for weaknesses and identify areas of improvement.
  • Serve as a technical security SME to advise on proper security designs for new and existing architecture and services.
  • Work between Information Security and IT teams to ensure requirements are incorporated into designs, and escalating risks.
  • Provide support for engineering, operations, and security teams to resolve security events.
  • Oversee IT systems risk assessments and control validation.
  • Assist in threat modeling to ensure the proper security services are implemented against the right risks, and properly communicate to relevant stakeholders.
  • Participate in the change management process.
  • Provide subject matter expertise in information security as it relates to networks and systems.
  • Monitor appropriate venues for threats to the security of the Hogan Lovells environment. Provide notification of actions needed to mitigate threats and manage the threat lifecycle.
  • Support and assist with external security audits of the firm’s environment.
  • Maintain knowledge of the information security needs of firm clients and implement measures to satisfy those requirements in the most efficient manner.
  • Provide other teams with security consulting services, including responding to requests for additional information and assisting with specific projects.

Requirements What do you need?
  • 3 to 5 years of Security / CyberSecurity experience,
  • Industry certifications in cybersecurity, such as CISSP, GSEC, CSSP preferred,
  • Familiarity with a variety of security tools and platforms, including Palo Alto and Microsoft,
  • Subject matter expertise in areas such as network security, cloud security, zero trust,
  • Cloud service experience, including AWS, Azure, and SaaS services
  • Experience implementing various security control sets, such as NIST, CSA, HIPAA, PCI, etc,
  • Direct experience implementing and operating security tools such as WAF, IPS/IDS, SIEM, DLP, Automation and Orchestration, Encryption,
  • Expertise in malware detection technologies and remediation.