Job Description
Role purpose:
1. To work within the IT infrastructure engineering team, contributing to development and implementation of information service and technology solutions as used by the company at large.
2. To lead efforts by the security operations team in pursuance of mitigation of security risks and issues.
Main responsibilities:
3. Working with team members and internal stakeholder to design and implement IS&T solutions and changes, including both technical design and business/operational design elements.
4. Participation in security operations management across various estates, including tracking and reporting on vulnerability status, working with info-sec and governance owners to define and track information security risks, and working on initiatives to risk reduce technology use within the business.
Qualifications
Core expertise and skills:
5. Security engineering including firewalling, vulnerability remediation.
6. Technical stewardship of third-party pen testing and analysis of results.
7. Identity management and access control solutions (IAM, RBAC, ABAC eg Sailpoint ID now, Okta etc).
8. Public cloud technologies (AWS, Azure).
9. Private cloud (VCD in particular) and hypervisors (Vmware stack in particular).
10. Networking L2,L3 including routing protocols, OSI, VPN (IPSEC, SSL), TCP/IP suite (DNS, DHCP, TLS), CDNs, NAT, reverse proxying.
11. Windows operating system platforms.
12. Experience in working in a large enterprise ITSM environment.
13. Experience of working in a delivery-assurance environment, including experience of working within both agile and linear/waterfall delivery processes.
14. Experience in working in a service outsourced environment / experience working with multiple service partners.
15. Experience working in a change managed/release managed environment.
16. Experience working within a risk managed/ ISMS environment.
17. Automation and scripting expertise ( PowerShell, Phyton, Rundeck, Ansible).
18. Familiarity with backup, recovery, and replication technologies (eg Comvault, Veeam, Zerto)
19. Good understanding of business continuity processes and practices.
20. Experience of ESD / patch management technologies ( Microsoft SCCM, Avanti patch manager).
21. Experience of report and MI generation for use by executive decision-making process.
22. Effective communication skills / high level of technical English fluency.
Beneficial expertise and skills:
23. ITIL certified (foundation v3 or v4).
24. Experience of database services administration SQL server config, PaaS / database as a service administration.
25. AWS Certified Cloud Practitioner.
26. Experience drafting operational procedures/run books.
27. Experience drafting design reference/documentation.
28. *nix operating system platforms ( various Linux distros).
29. Participation in pre-sales technical consultancy (not necessarily customer facing).
30. Involvement in supporting SaaS / PaaS solutions, 3rd line engineering support.
31. Familiarity with service/site reliability design/fault domain design etc.
32. Experience of presenting / reporting to higher management.