IT Security Engineering Lead

You will also make STB’s network more secure by implementing secure configurations and automated testing, in order to protect customer and employee data and maintain high levels of customer service.

Key Responsibilities

•Proactively develop tools to improve detection and response of security related events and incidents across the business

•Identify, improve and automate IT related processes

•Identity and define system security requirements

•Work with SOC and Threat Intelligence analysts to analyse, review and remediate security related incidents/logs, as well as automating the process as much as possible

•Contribute towards building maintainable SIEM, SOAR and SOC solutions

•Introduce and architect new technologies and platforms to improve Secure Trust Banks security posture and resilience

•Define, document, maintain and issue IT security related build and configuration documentation 

•Configure, maintain IT security related infrastructure devices

•Work with the Infrastructure team to design secure configurations for network and system architecture

•Prepare and document standard operating procedures and protocols

•Complete comprehensive reports including assessment-based findings, outcomes and propositions for further system security enhancement

•Be an escalation point for the Service Desk in respect to IT security-related matters

•Undertake threat monitoring using defined sources of intelligence from across the industry and keep abreast with the latest and emerging threats and security trends.

•Test adherence to security policies and operational procedures utilising various testing methods (e.g. vulnerability scanning, liaising with external Pen Test providers, configuration reviews etc.)

•Conduct IT risk assessments for solutions, processes and applications.

•Support with the development and testing of desktop, laptop, server and mobile builds.

What you will bring

•Hands on experience in the maintenance and administration of security systems, including firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, content filtering, etc

•Experience with Windows and *nix operating systems, including public and private hosting.

•Experience architecting, implementing and maintaining security systems

•In-depth knowledge with various web related technologies and network/web related protocols

•Experience in creating in-house tools or security related applications/controls

•Good practical knowledge of IT security monitoring tools/SIEM solutions.

•Experience of IT testing tools, including but not limited to vulnerability scanners, data discovery and network auditing. 

•Knowledge of scripting and programming languages (PowerShell, Python, C#, bash etc)

•Hands on experience with code repository maintenance, CI/CD pipelines

•Ability to identify and implement areas for improvement following Change Control and IT governance practices.

Everyone is different. Everyone is valued

As part of our vision to become the most trusted specialist lender in the UK, we’ve been helping customers and businesses fulfil their ambitions since 1952.  In that time, we’ve learned that we’re more than the sum of our parts. We’re a strong Group because of our people and our strengths; specialist, expert, ambitious and also diverse. All of our people are different and this is something we celebrate.

Every one of our employees brings unique talent, ability and perspective to their role.

That’s why Secure Trust Bank Group nurtures differences. We understand that we perform better because we’re not cast from the same mould. We actively embrace and support diversity, work with leading industry bodies and promote initiatives that reinforce our philosophy of giving you the freedom to be who you are.

We’re an award-winning bank providing savings accounts and lending services to over one million customers. We’re Secure Trust Bank Group. We embrace difference.