Descripción de la oferta
ppAs an IT Security Engineer, you will be responsible for protecting systems, networks and data from cyber threats and ensuring compliance with security standards. Identification of vulnerabilities, responding to security incidents and conducting regular assessments of the Achilles security posture. /ppConsulte la descripción del puesto a continuación. Si confía en que tiene las habilidades y la experiencia adecuadas, envíe su solicitud hoy mismo. /ph3Results Responsibilities /h3h3Security Operations /h3ulliThreat Monitoring: Monitor network traffic for suspicious activity, detect and respond to potential threats, and provide recommendations for mitigation. /liliSecurity Audits: Conduct internal audits of Achilles teams to ensure ISO 27001, SOC 2 Type 2 and ENS requirements are met. /liliFirewall and VPN Management: Configure and manage firewalls, VPNs, and related network security devices to ensure optimal protection. /liliCollaboration: Work with other IT teams to ensure security is embedded in infrastructure designs and processes. /liliPatch Management: Ensure timely updates and patches to network devices to mitigate vulnerabilities. /liliDocumentation: Maintain detailed documentation of network configurations, security incidents, and changes made to systems. /li /ulh3Information Security /h3ulliCompliance and Audits: Ensuring that the organisation complies with ISO 27001 requirements and other related standards. Preparing for internal and external audits. /liliIncident Management: Handling security incidents and breaches, ensuring proper reporting and analysis. Ensuring that corrective actions from security incidents are implemented and that lessons learned are incorporated into future improvements. /liliVendor and Third-Party Management: Ensuring that third-party vendors and service providers comply with the organisation's security policies and ISO 27001, SOC 2 Type 2 and ENS requirements. /liliContinuous Improvement: Monitoring the effectiveness of the ISMS and implementing improvements as needed. /liliCollaboration: Working closely with IT, legal, compliance, and other departments to ensure a unified approach to security. Collaborating on the integration of ISO 27001, SOC 2 Type 2 and ENS requirements into broader IT or business processes. /li /ulh3Personal Development /h3ulliTaking personal responsibility for skills development, particularly to enhance security capabilities. /liliActively participating in the performance management process and taking responsibility for delivering agreed objectives. /li /ulh3Relationships /h3ulliManage and develop relationships with third party providers and internal stakeholders. /liliBeing a security 'go to person'. /li /ulh3PERSON SPECIFICATION /h3h3Knowledge /h3ulliUnderstanding of ISO 27001 principles, threat modelling, vulnerability assessments, and risk treatment methodologies. /liliDeep understanding of network security principles (e.g., firewalls, VPNs, intrusion detection systems, SIEM), and network protocols. /liliKnowledge of encryption methods, access control mechanisms, and endpoint security tools. /liliKnowledge of compliance frameworks (ISO 27001, SOC 2, ENS, PCI DSS) and best practices. /liliKnowledge and experience with securing cloud environments (Azure). /liliKnowledge of network architectures. /li /ulh3Experience /h3ulliMinimum of 5 years of experience in IT Security, with a proven track record in a similar role. /liliTechnical skills:ulliStrong understanding of network protocols, including TCP/IP, DNS, routing, and switching. /liliExperience of security toolsets (Mimecast Portal and DMARC, Sophos Central, Qualys, Duo, Taegis XDR, Microsoft Entra ID, Copilot and InTune). /li /ul /liliSoft skills:ulliStrong problem-solving and analytical skills. /liliExcellent communication skills, both verbal and written. /liliAbility to work both independently and collaboratively in a fast‑paced environment. /li /ul /liliPreferred skills:ulliExperience in conducting penetration testing and threat hunting. /liliScripting experience (PowerShell) for automation of security tasks. /li /ul /li /ulh3Qualifications /h3ulliIT Diploma level or equivalent experience. /liliISO 27001 Lead Auditor desirable. /liliCISSP, CEH, CCNA Security, or other relevant security certifications are highly desirable. /liliFluent in English and Spanish, with the ability to communicate effectively in both written and spoken form. /li /ulh3Competencies /h3h3Decision Making /h3ulliIdentifies and evaluates the range of options open to them. /liliArticulates the assumptions made and the risks involved in decisions taken. /liliAnalyses information carefully to identify facts, patterns, trends and missing data that may impact on a decision. /liliCommunicates decisions clearly to those who are affected. /li /ulh3Achieving Results /h3ulliFocuses on performance outcomes despite uncertain or difficult circumstances. /liliActively links own efforts to those of others within the team to avoid overlap, rework or delays. /liliSpots opportunities to deliver beyond expectations, where this would help others perform more effectively. /liliSets own targets and objectives with clear reference to how these contribute to the departmental business plan. /li /ulh3Managing Change /h3ulliResponds constructively and quickly to shifting goalposts or changing requirements. /liliCopes effectively with rapid change or increased demands. /liliReprioritises own work or the work of the team in response to external pressures. /liliIs versátil in their approach; adapts their working style to suit the needs of the situation. /li /ulh3Drive Motivation /h3ulliAddresses multiple demands without losing focus or energy. /liliIncreases efforts in the face of difficulties or obstacles and recovers quickly after setbacks. /liliRemains calm and focused during stressful or challenging situations; concentrates only on things they can control or influence. /liliEncourages others during challenging times with a positive, can‑do attitude. /li /ulh3Creative Capacity /h3ulliUses initiative to resolve recurring problems in own role or team. /liliTakes calculated risks to improve own performance. /liliTries out new ways of working. /liliAllocates time to identifying and resolving the root causes of problems. /li /ulpHay opciones de teletrabajo/trabajo desde casa disponibles para este puesto. /p /p #J-18808-Ljbffr