Cyber Security Engineer
SigTech
- London
- £80,000 per year
- Permanent
- Full-time
- Conduct thorough security assessments of applications, systems, and infrastructure to identify vulnerabilities, weaknesses, and areas of improvement.
- Develop and manage the vulnerability management process, including vulnerability identification, prioritisation, remediation, and verification.
- Design, implement, and maintain robust security measures and controls to protect against potential threats, including firewalls, intrusion detection systems, and encryption protocols.
- Collaborate with software development teams to integrate security best practices into the development lifecycle, including threat modelling, code reviews, security testing, and secure coding standards.
- Monitor and analyse security events and incidents, responding promptly to mitigate risks and minimise potential impacts.
- Collaborate with the infrastructure team to ensure that security controls are effectively implemented and maintained across all layers of the technology stack.
- Stay updated on the latest security trends, threats, and technologies to proactively identify and address emerging risks.
- Develop and maintain documentation related to security policies, procedures, and guidelines for internal and external stakeholders.
- 4+ years of experience in application security, infrastructure security, or a similar role.
- Solid understanding of common application security vulnerabilities and attack vectors (e.g., OWASP Top 10).
- Experience with security assessment tools and techniques, such as penetration testing, vulnerability scanning, and code analysis.
- Proficiency in programming/scripting languages (e.g. Python, Bash, Javascript) for automation and scripting purposes.
- Strong knowledge of network and infrastructure security principles, including firewalls, VPNs, and secure network architecture.
- Familiarity with cloud platforms (e.g. AWS, Azure, GCP) and associated security best practices.
- Excellent analytical and problem-solving skills, with the ability to assess complex security issues and recommend effective solutions.
- Strong communication skills with the ability to collaborate effectively with cross-functional teams and communicate technical concepts to non-technical stakeholders.
- Experience in proactive threat hunting and identification of advanced threats within the environment
- Familiarity with industry-standard compliance frameworks such as SOC, GDPR and ISO 27001
- 26 days holiday, with up to 4 bonus days per year
- Up to 7 days working abroad anywhere you choose!
- Three days in the office the rest from home
- Healthcare cover
- Discounts on gyms