IT Security Analyst - Contractor
On site
Surrey, United Kingdom
Full Time
14-03-2025
Job Specifications
*This role sits inside IR35*
Responsible For
Ensuring company adheres to security best practise and protects its data and services to a high standard. Ensure all security accreditations are adhered to and maintained.
Key Purpose of Job
To provide technical expertise in the security of the infrastructure, incident management and update policies as required, in agreement with the IT Security Manager. Ensure continuous improvement of all systems and processes.
Key Tasks
SIEM Administration: Monitor and manage Security Information and Event Management (SIEM) systems.
Firewall and Proxy Audits: Audit firewall and proxy configurations, coordinating necessary changes with the Infrastructure Team.
Incident Management: Participate in the Cyber Security Incident Response Team (CSIRT) for incident readiness and handling.
ISO 27001 Compliance: Ensure all business processes adhere to ISO 27001 standards and support audits.
Security Alignment: Ensure alignment with security accreditations and Airbus directives.
Risk and Compliance Management: Maintain risk management processes and ensure compliance with relevant standards.
Project Security Requirements: Ensure all projects identify and address security requirements and follow Secure by Design principles.
Business Security: Work alongside business teams to understand their workflows and identify areas where security can be embeded. Create and implement security protocols and guidelines tailored to their business processes.
Threat Research: Stay updated on the latest security threats and mitigation strategies.
Penetration Testing and Audits: Arrange and oversee penetration tests and security audits.
Policy and Procedure Management: Keep security policies and procedures current and effective.
Risk Assurance Documentation: Produce and maintain risk assurance documentation.
Staff Education: Lead security education initiatives, including advisories, awareness programs, and best practices.
Change Documentation: Document all changes thoroughly.
Perform other tasks as directed by the IT Security Manager.
Qualifications
PERSON SPECIFICATION (essential requirements)
Degree in Computing or equivalent
MCSE, CCNA an advantage but not necessary
Experience
Proven experience in a security or data analysis role
Experience using Splunk (or similar SIEM)
Experience with ISO 27001 compliance
Experience in Risk Management
Knowledge & Skills
In Depth Knowledge of Microsoft operating system
Knowledge of securing cloud environments, such as Azure or AWS
Knowledge of Splunk ES would be an advantage
Ability to talk to a variety of audiences at all levels
Team player with good communication skills
Competent troubleshooting skills
Ability to work under own initiative and in a busy environment
Able to demonstrate company mindsets; accountability, one team, customers and projects rule
About the Company
Surrey Satellite Technology Limited (SSTL) is at the forefront of space innovation delivering customisable complete mission solutions for Earth observation, science, communications, navigation, in-orbit debris removal and servicing and exploration beyond Earth infrastructure. Job vacancies at SSTL are listed on our website: http://www.sstl.co.uk/Careers/Current-Vacancies Follow us on Twitter @SurreySat and on Instagram @surreysatellites Know more
Related Jobs
- Company Name
- CGI
- Job Title
- Infrastructure Support Engineer (Security Clearance)
- Job Description
- Position Description The Space, Defence and Intelligence business unit in CGI is a true IT Systems Integrator. We work, build, and operate bespoke, technically complex, mission-critical systems which help our clients keep us all safe and secure. We bring innovation to our clients using proven and emerging technologies, agile delivery processes and our deep expertise across the breadth of space, defence, intelligence, aerospace and maritime, all underpinned by our end-to-end cyber capability. We work collaboratively with global technology companies, cutting edge SMEs and academia to deliver the optimal solution for each client. CGI was recognised in the Sunday Times Best Places to Work List 2024 and has been named one of the ‘World’s Best Employers’ by Forbes magazine. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a CGI Partner not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you’ll be part of an open, friendly community of experts. We’ll train and support you in taking your career wherever you want it to go. Due to the secure nature of the programme, you will need to hold UK Security Clearance or be eligible to go through this clearance. This position will be based on site near Chippenham. Your future duties and responsibilities We are looking for a talented and motivated Infrastructure Support Engineer to join our team. This role involves providing hands-on support for critical infrastructure systems, ensuring their reliability and security. You will work with cutting-edge technologies and participate in an on-call rota to support business-critical systems 24/7. Key Responsibilities: Provide technical support for VMware platform, Tanzu, Dell VxRail, and Dell Data Domain. Troubleshoot key management systems like HashiCorp Vault and Thales HSM. Support privileged access management solutions (BeyondTrust) and SSO systems (KeyCloak). Have a foundational knowledge of network principles. System Maintenance: Administer and maintain Windows Server 2022 and Hyper-V. Monitor system performance and conduct routine maintenance. Contribute to disaster recovery and business continuity strategies. Collaboration & Documentation: Work with senior engineers and cross-functional teams to enhance infrastructure. Maintain thorough documentation for systems, configurations, and processes. On-Call Support: Participate in an on-call rota to resolve critical incidents outside of business hours. Required Qualifications To Be Successful In This Role Required Competencies: Experience in Defence or a highly regulated environment. Infrastructure or support engineering experience. Relevant certifications or a willingness to pursue them (VMware, Microsoft, Security). Strong communication and teamwork skills. Familiarity with Hyper-converged Infrastructure. Desired Competencies: Understanding of cross-domain technologies (Tiger Traps, Garrison, OpsWat, NiFi). Exposure to DevOps tools (GitLab, Harbor, FluxCD, Kubernetes). Familiarity with Elastic for monitoring and analytics. This is an exciting opportunity to work with advanced infrastructure technologies in a dynamic environment. If you have a passion for supporting and optimising critical IT systems, we’d love to hear from you! Together, as owners, let’s turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you’ll reach your full potential because… You are invited to be an owner from day 1 as we work together to bring our Dream to life. That’s why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company’s strategy and direction. Your work creates value. You’ll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You’ll shape your career by joining a company built to grow and last. You’ll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team—one of the largest IT and business consulting services firms in the world.
- Company Name
- Roku
- Job Title
- Senior Software Engineer, Security - Trust Engineering
- Job Description
- Teamwork makes the stream work. Roku Is Changing How The World Watches TV Roku is the #1 TV streaming platform in the US and Mexico, and we've set our sights on powering every television in the world. Roku pioneered streaming to the TV. Our mission is to be the TV streaming platform that connects the entire TV ecosystem. We connect consumers to the content they love, enable content publishers to build and monetize large audiences, and provide advertisers unique capabilities to engage consumers. From your first day at Roku, you'll make a valuable - and valued - contribution. We're a fast-growing public company where no one is a bystander. We offer you the opportunity to delight millions of TV streamers around the world while gaining meaningful experience across a variety of disciplines. About The Team At Roku, our Trust Engineering team is a close-knit group of passionate professionals. Our mission? To protect our customers, partners, devices, services, infrastructure, and data. We work collaboratively, sharing insights and expertise to stay ahead of the curve. Join us, and you’ll be part of a dynamic team that thrives on challenges and celebrates victories together. About The Role As a Security Software Engineer your role involves architecting, designing, and implementing end-to-end security controls to impact the global user base. A key focus is on developing automated, scalable security solutions to enhance efficiency. The position requires expertise in extending or creating security automation tools, including detection, process automation. What You Will Be Doing Leading the end-to-end process of building out security solutions and controls - from architecting and designing, through to development and implementation. Designing security solutions with an automated and scalable approach (think webhooks and Docker). Developing (or extending OSS) security automation tooling. This can range from detection tooling to security process automation, or a fuzzing infrastructure to find bugs. End-to-End Security Solutions: Architect, design, and implement security controls. Your work will directly impact our global user base. Automation Focus: Develop automated, scalable security solutions. Efficiency is key. Tooling Expertise: Extend or create security automation tools. Detection, process automation, fuzzing—you’ll own it. We are excited if you have Strong Software Engineering experience. Programming/scripting skills: Go, Python, or NodeJS. Practical experience with Kubernetes and containers. Practical experience with CI/CD. Experience with web applications, web services, and service-oriented architecture. Experience with modern standards and techniques for authentication, authorization, and cryptography. Infrastructure-as-Code: Terraform or similar. Cloud Deployment: AWS, GCP, or Azure. Cybersecurity Passion: Eager to protect digital assets. Benefits Roku is committed to offering a diverse range of benefits as part of our compensation package to support our employees and their families. Our comprehensive benefits include global access to mental health and financial wellness support and resources. Local benefits include statutory and voluntary benefits which may include healthcare (medical, dental, and vision), life, accident, disability, commuter, and retirement options (401(k)/pension). Our employees can take time off work for vacation and other personal reasons to balance their evolving work and life needs. It's important to note that not every benefit is available in all locations or for every role. For details specific to your location, please consult with your recruiter. The Roku Culture Roku is a great place for people who want to work in a fast-paced environment where everyone is focused on the company's success rather than their own. We try to surround ourselves with people who are great at their jobs, who are easy to work with, and who keep their egos in check. We appreciate a sense of humor. We believe a fewer number of very talented folks can do more for less cost than a larger number of less talented teams. We're independent thinkers with big ideas who act boldly, move fast and accomplish extraordinary things through collaboration and trust. In short, at Roku you'll be part of a company that's changing how the world watches TV. We have a unique culture that we are proud of. We think of ourselves primarily as problem-solvers, which itself is a two-part idea. We come up with the solution, but the solution isn't real until it is built and delivered to the customer. That penchant for action gives us a pragmatic approach to innovation, one that has served us well since 2002. To learn more about Roku, our global footprint, and how we've grown, visit https://www.weareroku.com/factsheet. By providing your information, you acknowledge that you have read our Applicant Privacy Notice and authorize Roku to process your data subject to those terms.
- Company Name
- Vocative
- Job Title
- Cloud Network Engineer
- Job Description
- Cloud Network Engineer - London/Hybrid - £55K - Permanent role An opportunity to join the cloud infrastructure and networking team within a well established business, to be part of their migration into a full cloud environment. You'll work as part of the team managing the existing on-prem, and growing cloud infrastructure, managing existing environments and assisting in building, designing and launching a cloud-hosted infrastructure. You'll be responsible for operational management of SaaS, IaaS and PaaS environments and will be responsible for automating resource provisioning (compute, storage, monitoring etc) and building and designing new tools and processes to improve experience and reduce errors. You'll need previous experience in a range of IT environments - operating systems, networks, applications, platforms and databases - including commercial experience with cloud technologies including design and deployment. Skills with technologies including AWS, Azure, Kubernetes, Terraform, Git or equivalents are essential, as are experience with virtualisation (VMWare or similar) and CI/CD pipelines. The role is based in Canary Wharf and is hybrid; you'll need to be in the office at least a couple of days a week. The role will pay up to £55K base plus an excellent benefits package. For more details and a confidential discussion please contact Justin Sleep with a copy of your resume.
- Company Name
- Smart-Sourcer
- Job Title
- AWS Cloud Architect – SaaS, Serverless Services, IaC, Security, Network, AWS Well Architected Framework
- Job Description
- Outstanding opportunity to this global, market leading, B2B SaaS tech business on a permanent basis as an AWS Solution Architect / AWS Cloud Architect. This SaaS business offers the opportunity to lead the architectural direction of the product suite from a design, resiliency, redundancy, security, best practice and standards perspective. We’re looking for a Cloud Architect with deep AWS expertise and understanding of engineering cloud platforms on an infrastructure as code basis (IaC). You’ll require the following skills and experience: 5+ years’ experience as a Cloud Architect / Solution Architect with AWS in a SaaS environment In depth knowledge of AWS Network, AWS Core, AWS Serverless Services, scripting and IaC Experience with EC2, S3, RDS, Lambda, IAM, VPC & Cognito Experience of AWS cloud security Hands on engineering background (development or DevOps) Outstanding business stakeholder engagement and management experience, inc. presenting of solutions to the exec team Knowledge of AWS Well Architected Framework and design patterns AWS architecture certifications highly beneficial £95k-£100k + bonus + benefits. 80% remote & Birmingham / West Midlands