Principle Cyber Security Engineer - Nigel Wright Group : Job Details

The OpportunityNigel Wright is excited to be supporting this public sector organisation in seeking an experienced technically proficient cyber security professional to expand their team.As the organisation undergoes transformational change, as a Principle Cyber Security Engineer you will be instrumental in managing and improving its technical cyber security defences, leading efforts in endpoint security, vulnerability management, alert triage, secure software development lifecycle and network security.This role demands a proactive individual with a deep understanding of security technologies and a strategic approach to threat management. In this flexible hybrid role, you will only need to be onsite 1-2 days a week, receive very generous holidays and pension contributions and can join the electric car lease scheme at substantially discounted rates.Our client is unable to sponsor visas, so candidates must have indefinite leave to remain in the UK and reside in commutable distance of Newcastle.The RoleAs the leading technical expert with Cyber Security operations, you will be responsible forEndpoint Security:

• Leading the deployment, configuration, and management of endpoint security solutions.
• Monitoring and responding to endpoint security incidents and threats.
• Conducting regular endpoint security assessments and audits to ensure compliance with security policies.

Vulnerability Management:

• Performing regular vulnerability scans and assessments across all systems.
• Prioritising and remediating vulnerabilities in collaboration with IT and development teams.
• Developing and maintaining a comprehensive vulnerability management program.

Alert Triage:

• Monitoring security alerts and incidents from various sources, including SIEM, IDS/IPS, and other security tools.
• Performing initial triage and analysis of security events to determine their severity and impact.
• Escalating and coordinating response efforts for high-priority incidents.

Secure SDLC:

• Integrating security best practices into the software development lifecycle.
• Conducting security reviews and assessments of applications and code.
• Collaborating with development teams to ensure secure coding practices and design.

Network Security:

• Monitoring and protecting the organisation's network infrastructure.
• Implementing and managing network security measures, including firewalls, VPNs, and intrusion detection/prevention systems.
• Conducting network security assessments and penetration tests.

The PersonWith significant experience in a SOC or technical cyber security role, you will possess

• Strong knowledge of endpoint security technologies (e.g., EDR, antivirus).
• Proficiency in vulnerability management tools and processes.
• Experience with SIEM platforms and security alert triage.
• Strong understanding of secure SDLC practices and tools.
• Solid grasp of network security principles and technologies.

Most importantly you will have excellent analytical and problem-solving skills as well as strong communication and collaboration abilities.Any relevant certifications (e.g., CISSP, CISM, CEH, GIAC) are beneficial though not essential.