Security Engineer

Weightmans is a Top 45 law firm with offices throughout the UK. Having been recognised as the leading legal employer at the annual Britain's Top Employers awards 2019 and achieved record rankings in Chambers UK, we are immensely proud of the work we carry out for our clients and the culture we provide to our people.

The Weightmans Information System team provides a wide range of computing and network support, delivering and supporting IT equipment, specialist software, services and networking supporting in support of the activities for the company.

Reporting to the IS Support Manager, you will be responsible for providing excellent IS Security support for the business. The successful candidate will possess an in-depth knowledge on network, endpoint, threat intelligence, and forensics.

This is an individual ‘hands on’ post under a wider support structure, so you will need to be comfortable driving your own activities and developing a long-term roadmap for the security activities of the organisation.

You will be working at a detailed technical level across a range of security technologies ensuring that through good communication, effective processes and procedures and excellent documentation we help the business continue with its success.

Main duties and responsibilities

• Investigation of security incidents to determine route cause, ensuring the timely and accurate communication of incidents to relevant teams, and the co-ordination of remediation activities
• Tuning preventative and detective security systems in response to emerging threats
• Scheduling vulnerability scans, interpreting results, undertaking and/or monitoring any remedial actions
• Scheduling penetration tests and take ownership of the resulting remedial actions
• Escalation point for the Service Desk and Return to Service teams on security issues
• Developing day-to-day operational IT procedures to maintain and improve our security position
• Performing regular security and configuration checks, and capturing associated metrics
• Delivering technical projects of work to improve internal systems and processes
• Research and learn about new technologies and threats to ensure security controls are current and optimal.
• Be responsible for the timely creation and maintenance of quality documentation for both users and IT colleagues
• Ensure that all queries are dealt with in a professional, timely and appropriate manner
• Work with the IS Support Manager and other IS Managers to identify trends and proactive improvement opportunities and make IT operations more efficient
• Keep own skills up to date, developing a depth or breadth of knowledge in an appropriate area through learning and practice

Other

• Present a pleasant, helpful and professional demeanour when dealing with business and customers
• Hours will be as required to undertake the role, including the scheduling and attendance of works outside normal working hours.
• Carry out ad-hoc site visits to Weightmans offices outside Liverpool, as and when required
• Undertake any other duties commensurate with the post.

Hazard-specific / Safety-critical duties

• Manual handling

Essential

• Strong experience in a security role such as Security or Network Engineer.
• Experience working with
  • Security Information & Event Management (SIEM) solutions
  • Firewall/Web Content Filtering solutions.
  • Federated Identity Solutions for cloud/SaaS applications.
  • Active Directory.
  • Web server software such as Microsoft IIS.
• A strong working understanding and experience of the following with the following security areas
  • Infrastructure Security
  • Web Application Security
  • Active Directory Security
• Strong individual and team working skills with good self-motivation and the ability to work with minimal supervision
• A business and customer focus, with constant awareness of trying to match the department’s expectation of IS.
• Good interpersonal skills with the ability to communicate effectively with all levels of users, suppliers and technical staff in a patient and helpful manner
• Excellent written communication skills; ability to document user guides, write procedures, reports etc.

Desirable

• Have prior experience working within an IS environment aligned to ITIL principles

Please note:

• Any reference to experience or PQE in our adverts or job descriptions is to be used as a guideline only. We welcome applicants from all backgrounds and with different levels of experience who can demonstrate that they fulfil the requirements of the role.

• The successful candidate appointed to this role will be subject to our standard background checking process, and any offer of employment made is conditional upon successful completion of those checks. Further details can be obtained from the Recruitment team.