Great Careers - jobs Great Careers

Security Engineer

Location: Farnborough
Employment Type: Full Time - Permanent
Job ID: 10533

QinetiQ comprises teams of dedicated people; experts in defence, aerospace, security and related markets. We draw on our extensive technical knowledge and intellectual property to provide the know-how and support to solve some of the world’s most challenging problems. Our people make the critical difference to customers by providing unique approaches to problem solving. Why don’t you join some of the world’s finest scientific and technical minds and help us make tomorrow work today?

Job description/Person specification Role Purpose
To ensure the confidentiality, availability and integrity of information stored and processed on the information technology (IT) systems for which Group IT have responsibility by engineering, implementing, monitoring and reporting on security controls appropriate to meet the assurance requirements of applicable policies, standards, legislation and Ministry of Defence (MoD) Accreditation.

Key Accountabilities
1. Deploying, maintaining and reporting on the effectiveness of security controls relevant to QQ’s Global IT Estate;
2. Acting as a point of contact in IT for Security related matters;
3. Making continuous improvements to the security posture of the IT estate;
4. Maintaining a current knowledge of security trends, threats and vulnerabilities;
5. Working collaboratively with IT community;
6. Investigating and deploying mitigations to known and emerging vulnerabilities;
7. Assisting with the assessment of security aspects of future proposed projects;
8. Supporting key components that comprise of the PKI “Public Key Infrastructure”, this includes CA “Certificate Authority” Servers and Thales Hardware Security Modules;
9. Ensure timely creation/application of certificates across all domains on within QinetiQ estate;
10. Oversee and lead on the PKI environment’s within QinetiQ. Ensuring these are kept updated; software, configuration, devices and events actions;
11. Manage change process for PKI RFC’s, report incidents and take ownership until completion;
12. Maintain a level of knowledge on new technologies sufficient to understand their applicability to our customer base and to implement and support them, if appropriate;
13. Ensure that PKI / Certificate documentation are well maintained, configuration records for all CA Servers, including records of software version of all equipment and also of all certificates issued by the environments;
14. Identify and develop methods and procedures to continuously improve information assurance and data privacy within the current portfolio of solutions, as well as the analysis and remedial work during security incidents;
15. Contribute to and maintain Group IT’s disaster recovery capabilities;
16. Develop knowledge on the implementation of mature services including monitoring, automation, scripting and asset management tooling;

Engineer will also:
1. Develop and maintain expert knowledge in PKI & Encryption Techniques / Algorithms;
2. Develop and maintain knowledge in Cyber Security;
3. Keep up-to date with enhancements in Public Key Infrastructure technologies;
4. Ensure systems have full and tested backup and restore capability;
5. Maintain system security assurance;
6. Ensure all cyber security vulnerabilities are prioritised and accordingly remediated;
7. Ensure software and hardware patches and updates are applied in accordance with relevant policies;
8. All mandatory training is under taken.

Key Capabilities/Knowledge
General
• Knowledge of security network devices (firewalls, switches, SIEM, Antivirus cryptography, etc.) and other security networking hardware/software tools;
• Demonstrated understanding of information security concepts, standards, practices, including but not limited to firewalls, intrusion prevention and detection, TCP/IP and related protocols, device monitoring and log management and event monitoring/reporting;
• Experience in LAN and WAN technologies, network design, network management etc;
• Experience with the security aspects of common operating systems, e.g. Windows and Linux;
• Understanding of common networking principles and IT Operations;
• Knowledge of security controlling functionality such as AV, Vulnerability Scanning & Security Logging;
• Working knowledge of PKI and its safe management;
• Professional and confident approach to customer based work;
• Excellent Analytical, interpersonal and organisation skills;
• Ability to work well within a team environment as well as independently;
• Ability to produce technical documents and procedures;
• Demonstrable analytical and technical aptitude with focus on identify and alleviating the root cause of the issue; solves the whole problem;
• Follow project management methodology and demonstrate best-practices in network documentation as required;
• Strong organisational and administrative skills;
• Good time-management skills;
• Willingness to travel occasionally within the UK.

Technical

• Proven work experience as a system security engineer or information security engineer;
• Experience in building and maintaining security systems;
• Detailed technical knowledge of database and operating system security;
• Hands on experience in security systems, including firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, content filtering, etc;
• Experience with network security and networking technologies and with system, security, and network monitoring tools;
• Understanding of the principles of cloud security;
• Thorough understanding of the latest security principles, techniques, and protocols;
• Familiarity with web related technologies (Web applications, Web Services, Service Oriented Architectures) and of network/web related protocols;
• Good understanding of current PKI technologies;
• An understanding of security policies and standards e.g. NIST 800, CIS 20;
Problem solving skills and ability to work under pressure;
• Experience in a service delivery, best practice environment preferred
Security Clearance (SC) is required for this role and must be maintained.

Experience & Qualifications
• At least 5 years working as an IT Engineer either in Endpoint, Server or Networking role;
• Demonstrable experience of working on cyber security related IT projects;
• Proven ability to thrive and respond to frequent demands of multiple constituents, both internal and external, in a customer centric manner and high demand environment.