Cyber Security Engineering Lead

Salary up to £70,000 per annum
LocationManchester
Discipline Digital Technology
Reference016302

We’re looking for an Cyber Security Engineering Lead, responsible for implementing, managing and enhancing the technology underpinning N Brown’s cyber security services. 

You’ll have a good understanding of a range of security tools like web application firewalls, intrusion detection technologies, vulnerability scanners and SIEM’s; and the technical knowledge to integrate them to enhance our protection. 

You’ll need a good understanding of the security tooling available in our cloud environments and will need to work with other engineering teams on their implementation. You’ll also support the wider Security team improve their efficiency through automation, and support incident response efforts when required. 

We're looking for someone who is pragmatic, with a good understanding of the risks to the business and practical ways to mitigate them, someone who can make the most of the tools available and solve problems creatively. You'll be an excellent communicator, with the ability to simplify technical terms for the non-technical person, and also manage and build relationships. 

What’s in it for you?

  • Hybrid working
  • 24 days holiday (+ 8 bank holidays) with the option to buy an additional 10 days
  • Annual bonus scheme
  • Enhanced maternity and adoption leave
  • Access to Apricity, a self-funding IVF benefit at a reduced rate
  • Company pension with up to 8% N Brown contribution
  • Mental Health support both internally and externally, including access to our wellbeing champions and counselling services
  • A range of financial wellbeing support
  • Colleague discount across all N Brown brands
  • Onsite café with subsidised rates and local restaurant discounts!
  • Life Assurance and Private Medical Insurance
  • Paid volunteer time – all our colleagues can take a full day paid to volunteer for a charity of their choice

As our Cyber Security Engineering Lead you will:

  • Inspire, develop and mentor the security engineers.
  • Ensure security platforms are maintained and operating effectively.
  • Work with other operational departments to ensure that our cyber controls remain effective, fit-for-purpose and are performing optimally.
  • Have a personal and corporate awareness of current Information Security Issues, e.g. emerging vulnerabilities and zero-day exploits, and to identify appropriate risk mitigation counter-measures.
  • Help shape and inform ongoing cyber security strategy in an ever-changing digital landscape.
  • Demonstrate an appropriate level of technical leadership and work closely with our internal & external stakeholders.
  • Manage the team ceremonies and support the overall delivery of the strategy, ensuring that all of the key deliverables are being met in line with business expectation.

What skills and experience are we looking for?

  • Developing and mentoring security engineers
  • Excellent communicator and the ability to build great relationships across the business and articulate security concepts to non-technical colleagues
  • A proficient problem-solver that can work autonomously
  • Knowledge of monitoring cloud environments using cloud native tooling
  • Experience in software delivery pipelines and automated deployments
  • An understanding of relevant security threats and controls to protect against them
  • Experience responding to incidents across corporate and customer-facing web applications, identifying potential threats and mitigating/escalating as required would be beneficial
  • Experience with SIEM Platforms (ideally Splunk), including working with logs and creating correlation searches and dashboards is a plus.
  • Experience of working within PCI DSS, or other compliance frameworks.

Software and Technology

  • Coding languages (Python, Teraform)
  • Build pipeline tools (Gitlab, Jenkins)
  • IaaS (AWS, Azure, GCP)
  • Splunk
  • Vulnerability scanning tools (ideally Rapid7)
  • Endpoint Detection and Response (EDR) tools such as MS Defender APT
  • Network and Host Intrusion Detection/Prevention tools
  • Web Application Firewalls (ideally Akamai)

Our promise to you: 

We’re an equal opportunity employer and value diversity. We do not discriminate based on race, religion, colour, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status. 

What happens when you apply to a role at N Brown? 

As soon as we receive your application, we’ll send you an email to let you know. We always aim to come back to you as soon as possible with an update and we really appreciate you taking the time to apply for a role with us. Good luck!