Network and Information Security Engineer

Stelvio Group • Leeds, Leeds, UK • 10h ago

Senior InfoSec Engineer £80-85K + bonus Role Objective As a key member of the InfoSec team, the InfoSec Engineer will work collaboratively with colleagues to enhance and maintain the security of the organization’s IT infrastructure. This hands-on role focuses on system patching, auditing firewall configurations, supporting security-focused projects, and contributing to ongoing risk mitigation and process improvements.

Key Responsibilities

System Security and Patching Collaborate with colleagues to manage and execute system patching for servers, endpoints, and network devices to maintain secure configurations. Assist in developing and optimizing automated patch deployment strategies to improve team efficiency. Monitor patching compliance and contribute to maintaining detailed records of updates and system hardening efforts.

Firewall Auditing and Network Security Conduct regular audits of firewall configurations, ensuring adherence to best practices and internal security policies. Review and monitor VPN, firewall rules, and other network security settings for potential risks or inefficiencies. Recommend and assist in implementing configuration changes to improve network security posture. Team-Based Security Projects Contribute to the design, implementation, and maintenance of security solutions through collaborative team efforts. Evaluate new security tools and technologies, providing input to align them with business needs and security objectives. Participate in integrating security projects into the organization’s broader infrastructure.

Risk Mitigation and Continuous Improvement Help assess IT systems and processes to identify vulnerabilities and recommend actionable improvements. Perform vulnerability assessments and track remediation progress in coordination with other team members. Stay informed of emerging threats, sharing insights and strategies to address potential risks proactively

Incident Management and Response Investigate security alerts and incidents, assisting in root cause analysis and remediation efforts. Contribute to the development and maintenance of incident response playbooks and team readiness for addressing security events. Support the use of monitoring tools and log analysis to detect and respond to suspicious activity.

Documentation and Knowledge Sharing Assist in maintaining comprehensive documentation of security configurations, processes, and workflows. Share knowledge and collaborate with team members to foster a culture of security awareness and excellence.

Skills and Experience

Required: A minimum of 7+ years of experience in an IT security role with a focus on system patching, firewall auditing, and vulnerability management. Firewall Expertise: Experience auditing, configuring, and securing firewalls and VPN systems as part of a collaborative environment. Technical Security Projects: Involvement in designing and implementing security solutions within complex environments. System Management: Hands-on experience with patching and securing operating systems (e.g., Windows, Linux), virtual environments, and network devices. Vulnerability Management: Familiarity with performing scans, remediating findings, and improving system hardening. Networking Knowledge: Strong understanding of networking protocols, segmentation, and security principles. Automation Skills: Ability to assist in scripting or automation efforts to streamline security operations.

Personal Attributes Team-Oriented: Collaborates effectively with colleagues to contribute to shared goals and resolve challenges. Problem Solver: Strong analytical skills to troubleshoot and resolve technical security challenges. Proactive Learner: Continuously seeks opportunities to improve security processes and develop technical skills. Effective Communicator: Ability to articulate security risks and provide input into team decisions. Detail-Oriented: Maintains accuracy and diligence in applying patches, auditing configurations, and documenting processes.

Seniority Level Mid-Senior level Industry IT Services and IT Consulting Employment Type Full-time Job Functions Information Technology Skills Firewalls Application Security Technology Security Vulnerability Knowledge Sharing Patch Management Network Security Vulnerability Management Solver