Perimeter Security Engineer

Schroders Investment Management
London, United Kingdom
15 Aug 2022
07 Sep 2022
Job Function
Industry Sector
Finance - General
Employment Type
Full Time
Who we're looking for
A Cloud and Network Perimeter security engineering role has arisen within Information Security to lead the engineering change required regarding Firewalls and firewall management, Web Application Firewalls, Security Tool ServiceNow integrations (Specifically data loss prevention). The engineer will be responsible for driving process automation and investigation by designing, developing, testing and implementing security solutions across Schroders estate along with responding to tooling incidents and incident response within the wider Information Security should the time arise. The successful candidate will work within Cloud and Perimeter Security team in partnership with our Security Operations, Security Architecture, Endpoint Security, Security Data Insights teams and the wider Global Technology teams.

About Schroders
We're a global investment manager. We help institutions, intermediaries and individuals around the world invest money to meet their goals, fulfil their ambitions, and prepare for the future.

We have around 5,000 people on six continents. And we've been around for over 200 years, but keep adapting as society and technology changes. What doesn't change is our commitment to helping our clients, and society, prosper.

The base
We moved into our new HQ in the City of London in 2018. We're close to our clients, in the heart of the UK's financial centre. And we have everything we need to work flexibly.

The team
IT at Schroders is not just about technology; it's about problem solving using cutting edge technology to support the business and deliver high end solutions. We encourage innovation and value excellence. We are a global function that's managed locally and this allows us to develop and deploy systems and processes across our international offices. To learn how we've grown, explore our interactive timeline to see how we've been shaping financial futures since our very beginnings.
The Schroders Global Information Security function ensures our business is able to operate safely in a dynamic threat and technological environment by effectively managing the risks to its information assets. To achieve this aim, the function contains teams responsible for Cyber Security, Insider Security, Information Risk Management, Technology Risk and the Information Security Change Programme.
We also recognise that successfully balancing personal and professional commitments brings out the best in our teams and therefore all roles in Global Technology are reviewed for suitability for flexible working arrangements. We passionately believe that individual performance is enhanced by embracing the whole individual and structuring a working environment that supports them.

What you'll do
• Firewall security posture remediation (Physical and Virtual)
• Managing automated firewall ticketing system
• Understanding the operation of internet proxies and rule implementation
• Facilitating the implementation of services/APIs behind a WAF, applying, tuning and maintaining WAF and DdoS Policies
• Maintaining Schroders DMARC posture
• Leading design engineering work on security tools with Servicenow Integration (Currently Microsoft Information Protection)
• Designing and implementing SOC use cases in regard to perimeter and cloud security
• Maintaining and Improving logging and monitoring posture in the cloud
• Incident Response (Firewall log searching, Splunk and Sentinel log queries)
• Providing evidence to internal and external auditors
• Change planning and scheduling
• Communicating changes to users on correct level through corporate channels
• Working closely with Schroders Network Engineers (Both operations and engineering) and Security Application Architecture as well as contacts from the business
• Following Schroders use of Agile, PI Planning, Sprint demos, stand ups etc.
• Develop, implement and execute Standard Operating Procedures/technical documentations for security engineering best practices and internal workflows
• Stays current with security technologies and make recommendations for use based on business value.
• Maintains an expert knowledge in the field of Information Security and the related issues, systems, processes, products, and services.
• Participate, support and improve of the continuous security testing activities
• Contribute to the development of security policies, security standards, and risk governance processes.
• SME for Microsoft Information Protection, leading the organisation with design, support and training for the delivery of Sensitivity Labels, auto-labelling solutions.
• SME for Data Loss Protection focused on Microsoft 365, also responsible for the migration of legacy DLP systems into M365. Providing design, support and training where required.
• Managing the co-existence of Sensitivity labels and DLP policies between Schroders and Schroders Group Organisations
• Supporting Mergers & Acquisitions projects where required to ensure migrated systems and repositories are transferred securely without MIP and DLP complications.
• Provide The SOC with feedback on recent service requests where information was difficult to find
• Maintain the Tessian platform and its configuration and design
• Liaise with RISOs and BISOs to ensure that their GRC requirements are fulfilled and reported against
• Support Cloud Engineering in InfoSec with Sentinel log querying to develop Analytic Rules, Playbooks with specific emphasis on DLP
• Development and delivery of training materials to support the organisation's education of Information Protection and DLP

The knowledge, experience and qualifications you need
• Palo Alto Firewalls
• Checkpoint Firewalls
• Mcafee Proxies
• Firewall management and auditing tools
• Servicenow Integrations
• Web Application Firewall
• Azure Sentinel, logic apps, AWS
• Azure DevOps
• Power Bi/Tableu data visualisation
• DMARC and DMARC Reporting
• Sentinel/Splunk/Snowflake query writing skills
• Knowledge of MITRE attack techniques
• Understanding of general operational security practices and principles, threats/vulnerabilities and incident response/investigation methodologies.
• Tessian
• Symantec Endpoint DLP

The knowledge, experience and qualifications that will help
• Next Generation Firewalls
• Internet Proxies
• Azure, AWS
• Microsoft Information Protection
• Microsoft Data Loss Prevention
• ServiceNow Ticketing Platform
• Office 365 applications skills
• Knowledge of Agile/Scrum
• Have an analytical mind-set and a keen eye for detail.
• Curious in nature, collaborative, eager to learn and challenges ideas in order to innovate
• Familiarity in at least one programming/scripting language (HTML/KQL/SQL/Regular Expression)
• A team player with excellent communication skills.
• Analytical thinking and problem-solving capability.
• Great attention to detail and time-management skills.
• Demonstrable aptitude and coordination in technical meetings and report writing
• Good understanding of the full Microsoft 365/Azure stack
• AZ-900 - Microsoft Azure Fundamentals
• AZ-104 - Microsoft Azure Administrator
• SC-900 - Microsoft Security, Compliance, and Identity Fundamentals
• SC-200 - Microsoft Security Operations Analyst
• SC-300 - Microsoft Identity and Access Administrator
• SC-400 - Microsoft Information Protection Administrator

We're looking for the best, whoever they are
Schroders is an equal opportunities employer. You're welcome here whatever your socio-economic background, race, sex, gender identity, sexual orientation, religious belief, age or disability.

Similar jobs

Similar jobs

  • You need to sign in to save