Novia Financial plc
Cyber Security Engineer
Novia Financial plc, Columbia, South Carolina, United States,
The Cyber Security Engineer is responsible for helping us to secure our operating platform and protect our key stakeholders, IT infrastructure, information assets and business operations.Reporting to the Head of Information Security, the successful candidate will work with key business stakeholders, DevOPS, SOC, and 3rd party vendors, to ensure that we operate a robust Cyber Security infrastructure and ISO27001 ISMS that is highly effective in protecting the business, in line with our commitment to clients and our regulatory obligations.Key Responsibilities:Managing, operating, maintaining, and monitoring our Cyber Security infrastructure, to ensure all systems and processes are configured in line with best practice, fully operational, and highly effective at defending the operating platform against prevailing threats, vulnerabilities, and risks.Working in conjunction with the SOC to ensure that use cases, monitoring, and alerting are appropriate and focused on detecting and addressing the full spectrum of threats, vulnerabilities, and risks relevant to our business.Ensuring that security alerts and incidents are investigated, escalated in line with the Incident Handling playbooks, and remediated. Ensuring that appropriate root cause analysis is undertaken and working with colleagues and partners to implement corrective and preventative actions.Working with colleagues in DevOps and 3rd Party Vendors to ensure that our technology stack is suitably hardened and provisioned in line with best practice.Working with colleagues in DevOps and 3rd Party Vendors to ensure that an effective program of vulnerability patching is operated across the technology stack.Operating the core elements of the ISMS: maintain an information asset inventory, model/identify relevant threats, identify specific vulnerabilities in the operating platform, perform risk analysis, identify, propose, implement, and monitor the performance of corrective actions and controls.Supporting the ongoing improvement of BCP/CDR.Participating in the continuous review and improvement of our ISMS and Cyber Security Infrastructure.Specialist Skills, Qualifications and Experience:Essential:Experience in Azure, and in particular the Azure security-based resources such as Azure Firewall/Defender for Cloud.Experience with the full Defender XDR suite/Security Centre:
Defender for IdentityDefender for OfficeDefender for Cloud AppsDefender for Endpoint/Server
Comfortable working in a Hybrid environment.Experience with SIEM tools, in particular Microsoft Sentinel.Proven experience implementing and understanding the impact of various Active Directory security improvements and recommendations.Conduct audits on best practice implementation of Microsoft products such as Microsoft Entra, Active Directory.Experience with Microsoft Entra, in particular conditional access and application management.Implementation experience of Microsoft Purview (Sensitivity Labelling/Data Loss Prevention).Desirable:Exposure to working within a DevOps/Agile environment.Knowledge of IaC tools such as Terraform.Comfortable with Git and basic version control and CI/CD.An understanding of Azure Policy and a wider knowledge of Azure services.Experience with Kubernetes and in particular AKS.Familiarity with Cloudflare Tunnels and other services.Knowledge of best practices within Secure Service Edge products.A recognised Microsoft accreditation; MCA, ASEA, MCSA, or MCSE and/or any of the following certifications would be a plus: AZ-104, AZ-500, SC-200, SC-300 or AZ-305.
#J-18808-Ljbffr
Defender for IdentityDefender for OfficeDefender for Cloud AppsDefender for Endpoint/Server
Comfortable working in a Hybrid environment.Experience with SIEM tools, in particular Microsoft Sentinel.Proven experience implementing and understanding the impact of various Active Directory security improvements and recommendations.Conduct audits on best practice implementation of Microsoft products such as Microsoft Entra, Active Directory.Experience with Microsoft Entra, in particular conditional access and application management.Implementation experience of Microsoft Purview (Sensitivity Labelling/Data Loss Prevention).Desirable:Exposure to working within a DevOps/Agile environment.Knowledge of IaC tools such as Terraform.Comfortable with Git and basic version control and CI/CD.An understanding of Azure Policy and a wider knowledge of Azure services.Experience with Kubernetes and in particular AKS.Familiarity with Cloudflare Tunnels and other services.Knowledge of best practices within Secure Service Edge products.A recognised Microsoft accreditation; MCA, ASEA, MCSA, or MCSE and/or any of the following certifications would be a plus: AZ-104, AZ-500, SC-200, SC-300 or AZ-305.
#J-18808-Ljbffr