EWT Security | Consultant - Security Platform Engineer

The Role: 

Working in the Security Operations team as a Security Engineer you will play a key role in ensuring that the business IT systems are protected and monitored from threats. 

You will assist with the daily operational system administration of the security toolsets including SIEM, DLP and EDR to ensure they are updated and fully functional. 

Key Responsibilities: 

 

• Maintain software version and patch management for security products (including regular software patch updates).
• Encryption Key and Certificates management for security products.
• DLP policy/rules administration and maintenance.
• Software licensing and renewal.
• Maintain EDR coverage and version with regular health assessments across the KPMG environment.
• Review or implementation of SIEM rules (incl. False/Positives and remediation).
• Production incidents handling for security products (such as troubleshooting, hardware parts replacement, software bug fixes, vendor and 3rd party support engagement).
• Maintain security technical engineering standards to meet information security policies and controls, industry standards and best practices, applicable legislative and regulatory requirements.
• Document Low Level Designs and other relevant artefacts required by project life cycle.
• Support and contribute to producing Security dashboards and reporting.

 

The Person: 

Technical skills and experience: 

 The ideal candidate will have expertise in the following: 

 

• Minimum 3 years relevant experience in building and maintaining IT security, including direct experience within a Security Engineer role.
• Certifications such as AZ-500, AWS Security, CEH, CISSP, GIAC (Advantageous)
• Thorough understanding of the latest security principles, techniques, and protocols.
• An excellent hands-on understanding of the following areas or technologies:
  • Scripting and automation tools
  • Azure / AWS Platforms and its security technologies
  • Firewall and intrusion detection/prevention protocols
  • Secure coding practices, ethical hacking and threat modelling
  • Windows, Apple, Linux operating systems
  • Secure network architectures and technologies
  • Network and web related protocols (eg, TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols, etc.)
  • Advanced Persistent Threats (APT) prevention and detection
  • Penetration and vulnerability testing tools and techniques
  • Privilege Access Management
  • SIEM tools
  • Virtualization technologies
  • Application security principles
  • Secure network architectures and technologies
  • Network and web related protocols

Soft skills and experience: 

 

• Proven customer service skills and experience. 
• Ability to read and interpret data including security, system, application and device specific logs 
• Excellent analytical skills and solutions-oriented approach. 
• Ability to work in high-demand, busy environments. 
• Ability to quickly learn new technologies and systems. A methodical approach with accuracy is essential. 
• Ability to liaise with the full range of individuals and groups involved in a business or IT programme. 
• Ability to develop and maintain effective working relationships with members of the different KPMG team in the UK and globally.

Research, develop and suggest ideas and techniques to improve the functioning not only for the Security Tools team but also the wider Information Security function.