Example Security Engineer Job Description

​Security Engineer (Cloudflare Req) | Remote (UK) | up-to £95k

• Location: City of London
• Sector: Information Security
• Job type: Permanent
• Job functions: Cyber Security Engineer
• Salary: £65000 – £95000 per annum

If you’re looking to get your head in the clouds with an exciting new opportunity as a Security Engineer with experience in either AWS, Azure, or GCP, this is the role for you! La Fosse is partnering with an exciting Next-Gen MSP to bring on x2 Security Engineers – one at Senior level. The ideal candidate will have a strong understanding and hands-on knowledge of Cloudflare, WAF, Zero Trust, and CDN tooling.

You will be engaged with industry leading enterprise customers to help improve their cloud security and to remediate cloud security issues present in their environments. Providing thought leadership and consultancy, you will be an expert cloud security professional guiding customers through their digital transformation journeys in a safe and secure way. This may be applicable to a customer’s single cloud, multi-cloud, or hybrid cloud environment.

Job Requirements

• Provide expert engineering support for cloud security tools
• Thought leadership on securing of a wide variety of origin applications.
• Resolving unhealthy security tools and resolving security incidents.
• Supporting customers in general cloud security & compliance recommendations.
• Guiding customers on testing and troubleshooting of security tools as implemented.

Required Skills

• Hands-on experience with Azure or AWS.
• Proven experience in the implementation of CDN tools, ideally Cloudflare.
• Should have experience with deployment and operation with Cloud WAF and Bot Management Technologies and protecting Web Applications.
• Analyzing and developing WAF policies to optimize WAF Security on an enterprise scale.
• Strong understanding of TCP/IP, Web Protocols and TLS Protocols.

Preferred Skills

• EDR, IPS, AV, Firewalls, vulnerability management, RASP.
• Security certifications such as CompTIA Security+, CCSP, CISSP, GCSA and CISM.
• Relevant certifications/training in Cloud Security Engineering for AWS, Azure or GCP.
• Experienced in securing and/or modernising legacy environments.

Security Engineer (Palo Alto) | Remote (UK) | up-to £90,000 |

• Location: London
• Sector: Information Security
• Job type: Permanent
• Job functions: Cyber Security Engineer
• Salary: £65000 – £90000 per annum

La Fosse is partnering with an exciting Next-Gen MSP to bring on x2 Security Engineers with specific experience in Palo Alto – one at Senior level. The ideal candidate will be a technical SME in advising and guiding customers and have demonstrable ability to guide customers through digital transformation journeys in single, multi, or hybrid-cloud environments.

Job Requirements

• Provide expert engineering support for cloud security tools
• Thought leadership on securing of a wide variety of origin applications.
• Supporting customers in general cloud security & compliance recommendations.
• Guiding customers on testing and troubleshooting of security tools as implemented.
• Help design and deployment scenarios for PA Global SSL VPN, PA DNS Security, and more…

Required Skills

• Hands-on experience with Azure or AWS.
• Proven experience in the implementation of CDN tools, ideally Palo Alto.
• Should have experience with deployment and operation with Cloud WAF and Bot Management Technologies and protecting Web Applications.
• Analyzing and developing WAF policies to optimize WAF Security on an enterprise scale.

Preferred Skills

• EDR, IPS, AV, Firewalls, vulnerability management, RASP.
• Security certifications such as CompTIA Security+, CCSP, CISSP, GCSA and CISM.
• Relevant certifications/training in Cloud Security Engineering for AWS, Azure or GCP.
• Experienced in securing and/or modernising legacy environments.

​

Principal Security Engineer

• Location: City of London
• Sector: Cloud, Infrastructure and Services
• Job type: Permanent
• Job functions: Mid-Level, Cyber Security Engineer
• Salary: £90000 – £105000 per annum + Benefits package

Position:Principal Security Engineer

Location:London

Salary:£105,000 plus benefits package

We are currently working with a prestigious financial services business who are currently undergoing an enormous transformation within their IT function. They are looking to recruit a Principal Security Engineer to assist in developing their cyber defence capabilities to protect the group from cyber threats which seek to impact the confidentiality, integrity, and availability of group assets. Domain area is Network Security.

Skills and Experience:

• Enterprise and service provider network, architecture, engineering, and operations. Level of knowledge in the domain area would be considered an expert.
• Network security architecture, engineering, and operations. Level of knowledge in the domain area would be considered an expert.
• Architecture and engineering of layered control capabilities to an expert level.
• A strong understanding of information security principles and best practices.
• Adversary Tools, Techniques and Procedures. A deep understanding of TTP’s is required.
• Threat Modelling experience.
• Broad technology knowledge across non-core domain area.
• Modern engineering practices, automation to drive efficiencies. Infrastructure as Code mindset. Code /scripting for practical tasks and tool integrations.
• Structured and methodical troubleshooting practices for resolving the most complex problems.
• Policies, standards and security frameworks, NIST, CIS. Strong skills to author formal documentation.
• Risk and control, management, monitoring and reporting.
• The role holder works independently and with guidance only in the most complex of situations. The role holder is expected to solve problems with sound judgement and in a way that is aligned to good practice and in the long-term interests of the organisation.
• The role holder is likely to hold one or more of the following security or engineering/architecture specific certifications, CISSP, OSCP, TOGAF, GIAC or those relevant to the role/domain area.
• Business and sector expertise
• Experience and knowledge of technology in financial services and/or regulated environments and industry compliance schemes (for example SWIFT) preferred.
• Must have significant experience of working in security focussed roles. Likely will have greater than 5 years full time in security roles as part of an overall career in technology in excess of 10 years focussed predominantly in the domain area for the role. Expected to have direct hands-on experience in some of the domain area technologies.
• Leadership and management experience
• Managing a non-FTE delivers from contingent and/or partner/vendors in delivery.
• Experience in advocating for and influencing change in order to reach best outcome based on the needs of the organisation, stakeholders and from monitoring industry trends.
• Mentoring and guiding those at earlier career stages to grow the competence and experience of the team.