Looking for an IT Security Engineer
My boss is looking to replace a Security Engineer who's recently left.
Below is the Job Description
Feel free to comment / message me if you want more info.
JOB SPECIFICATION
Job Title: Security Engineer
Base: Broadcast Centre, London
Contract: Permanent
Job Purpose
The role of Security Engineer is to facilitate the operational and administrative aspects of Red Bee’s IT security requirements. Whilst the role is part of the Network and Security Platform team, responsibility extends through both the IT and Delivery strands of Technical Support Team, taking in all ‘business as usual’ systems. Implementation of project work is also required.
First class communication and problem solving skills are required as is the ability to understand and work to agreed Service Level Agreements whilst still delivering a professional service.
Reporting Lines and Key Relationships
The Security Engineer reports to the Network and Security Platform Manager. The role requires the development of a strong working relationship with all Duty Engineering Managers, the IT and Delivery Platform Managers, and the Information Security Manager. Additionally, the role requires development of strong relationships throughout the business with staff such as Project Managers and Technical Managers.
Context
Red Bee Media specialises in the delivery and promotion of digital media and offers the complete range of services required to promote, playout and provide access to broadcast content across all media, from television to mobile phones. With over 1000 staff in London and almost 100 around the UK and revenues in excess of £100million, Red Bee Media is the largest playout and channel management business in the UK , providing critical services to a number of broadcasters including the BBC, UKTV, Channel 4 and Five.
Initially focussed within the UK, Red Bee Media has successfully won business globally and is developing plans to expand in Europe, Asia and the USA - wherever possible using its state-of-the-art Broadcast Centre based in West London.
Please log onto www.redbeemedia.com for further information.
Key Accountabilities
Technical Work:
• Apply and enforce systems security processes, policies and tools as defined by the Information Security Manager, across the business to protect the integrity of systems and to ensure full compliance with corporate and legal requirements
• Have technical sign off responsibility for Change Controls (where appropriate)
• Carry out root cause analysis.
• Responsible for ensuring the live environment is available to the business and is not compromised by project developments or routine BAU changes.
• Manage security infrastructure including firewalls, remote access systems, intrusion prevention devices, proxies and antivirus tools etc.
• Advise and support Tech Support team and business managers on security issues
• Record security data information and respond to an information security incident. Recommend actions, and implement solutions defined by the Information Security Manager.
• Implement and maintain security policies as defined by the Information Security Manager.
• Assist in the development of current operational processes and documentation or creation if they currently don’t exist.
• Carry out security reporting as requested by the Network and Security Platform Manager or Information Security Manager. In conjunction with the Information Security Manager implement monitoring controls, tracking and reporting
• Assist in the planning and execution of projects.
Team Member Duties
• Participate in the out-of-hours on call rota providing expert and professional technical support to the business
• Receive and resolve incidents via the incident management tool
• Contribute to the training and awareness of current and new staff.
• Attend meetings relating to the on-boarding of new systems, clients, stakeholders into Technology Support.
• Act as a point of escalation for high profile incidents, taking personal ownership of communication / escalation as necessary
Supplier Management:
• Develop a good relationship with all key suppliers and ensure product roadmaps are understood and communicated where relevant to others members of the team and management.
Service Management:
• Follow ITIL best practice relating to incident management, problem management, change management, configuration management and capacity management.
• Follow ITIL best practice relating to service management and their associated tool set in relation to incident logging, prioritisation, SLA’s and escalation.
• Ensure resolution of complex issues are recorded and fed back to the support team in an agreed format and stored in an accessible central location (ie Incident\Problem Management tools)
• Maintain records and logs of work done using the department service desk tools, on the installation, modification and repair of systems.
Self Development:
• Keep abreast of all current and relevant security issues and developments including but not limited to latest weaknesses on hardware and software platform in use by Red Bee Media, latest threats, current available Supplier patches etc
Business Interaction:
• Act as a champion within the business for issues relating to IT Security. Raise awareness and drive up conformity to business requirements and policies
• Assist in the operational aspects of Business Continuity Planning
• Have responsibility for reviewing change controls and feedback if there is a risk to the business.
• Assess new business and technical requirements and highlight risks to the business so informed decisions can be made by the Platform Manager and Head of IT.
Network Support Team Interaction:
• Work alongside the RBM network team to provide advice on security issues and for the Network team to provide advice on all network issues that may be affecting RBM service.
Person Specification
Experience and Knowledge
A range of the following experience and knowledge areas is required:
• Hands on security experience in a large, structured, multi vendor enterprise environment
• Proven tract record of customer liaison and fault management with experience in a support and / or NOC environment.
• Experienced in the deployment of complex security solutions in demanding and mission critical environments
• Good understanding of TCP/IP and networking technologies/protocols
• Good experience and strong knowledge of a wide range of security technologies
including:
• Checkpoint VPN-1
• Juniper firewalls and SSL VPN
• Crossbeam X-Series
• Bluecoat Proxy SG and Proxy AV
• Nokia IP Security Platforms
• Tipping Point IPS
• Fortinet firewalls
• Knowledge of Foundry / Brocade or Cisco, Infoblox, Nagios and SNMPc advantageous
• The ability to use and update formalised knowledge management systems
• Experience of working in a technical environment which follows strict change control policy and procedures.
• Experience of ITIL Service Management principles
• Well developed team skills with the ability to organise and prioritise work to ensure deadlines are met
• Good interpersonal skills with the ability to liaise effectively with different levels and audiences.
• UNIX / Linux Operating Systems
• Perl scripting
• Microsoft Operating Systems
• Server, PC and Mac hardware and software
Skills and Behaviour
• A high level of interpersonal skills and the ability to communicate tactfully and persuasively with a wide range of people
• First class verbal and written communication skills with the ability to explain technical issues to a non technical person.
• Strong ownership and sense of responsibility
• Good interpersonal skills with the ability to build relationships with a wide range of diverse stakeholders
• Experience of working under pressure in a dynamic and fast moving technical environment
• Takes a keen interest in and keeps up to date with latest changes and developments in IT security
• Ability to work as an effective member of a team, but also capable of carrying out tasks unsupervised
• Able to inspire confidence in all customers of the Tech Support department, whether internal or external.
• Able to appreciate and where appropriate accommodate the sometimes competing priorities of ‘ideal’ security solutions versus the other priorities of the business such cost and service interruption etc.
• Strong understanding of the need to maintain good records of system configuration and other associated documentation. Able to prepare such documents and champion their use and maintenance within the department.
• Understands and follows Red Bee defined incident, problem, change and configuration management processes.
• Ability to remain cool and calm under pressure
• Appreciates the unique nature of a live broadcast environment and the risks associated.
Competencies
Technical Skills - with the methodologies, operational and manual skills appropriate for a senior IT security role in a large business
Flexibility and Innovation - the ability to adapt to new situations and devise improvements to current situations. Can demonstrate the ability to apply skills and experience to new problems and areas of research.
Analytical Thinking - capability of original thinking, an enquiring mind with established analytic investigative skills. An ability to make judgement necessary to choose the best solutions to engineering problems
Organisation and Planning - time and resource management skills to develop appropriate methods of working to meet the demands of the role.
Working with others - the ability to work co-operatively and supportively with others
Self-development and Self-motivation - working continuously and proactively to develop the knowledge and skills required.
Communication Skills - the ability to give and receive information in order to further knowledge and understanding and to present and promote our work.
Commitment and Resilience - taking ownership of work problems and maintaining a high level of performance in the face of pressure. Can demonstrate an approach to work that is characterised by commitment, motivation and energy.
(A job description is a written statement of the essential characteristics of the job, with its principal accountabilities, incorporating a note of the skills, knowledge and experience required for a satisfactory level of performance. This is not intended to be a complete, detailed account of all aspects of the duties involved).
Below is the Job Description
Feel free to comment / message me if you want more info.
JOB SPECIFICATION
Job Title: Security Engineer
Base: Broadcast Centre, London
Contract: Permanent
Job Purpose
The role of Security Engineer is to facilitate the operational and administrative aspects of Red Bee’s IT security requirements. Whilst the role is part of the Network and Security Platform team, responsibility extends through both the IT and Delivery strands of Technical Support Team, taking in all ‘business as usual’ systems. Implementation of project work is also required.
First class communication and problem solving skills are required as is the ability to understand and work to agreed Service Level Agreements whilst still delivering a professional service.
Reporting Lines and Key Relationships
The Security Engineer reports to the Network and Security Platform Manager. The role requires the development of a strong working relationship with all Duty Engineering Managers, the IT and Delivery Platform Managers, and the Information Security Manager. Additionally, the role requires development of strong relationships throughout the business with staff such as Project Managers and Technical Managers.
Context
Red Bee Media specialises in the delivery and promotion of digital media and offers the complete range of services required to promote, playout and provide access to broadcast content across all media, from television to mobile phones. With over 1000 staff in London and almost 100 around the UK and revenues in excess of £100million, Red Bee Media is the largest playout and channel management business in the UK , providing critical services to a number of broadcasters including the BBC, UKTV, Channel 4 and Five.
Initially focussed within the UK, Red Bee Media has successfully won business globally and is developing plans to expand in Europe, Asia and the USA - wherever possible using its state-of-the-art Broadcast Centre based in West London.
Please log onto www.redbeemedia.com for further information.
Key Accountabilities
Technical Work:
• Apply and enforce systems security processes, policies and tools as defined by the Information Security Manager, across the business to protect the integrity of systems and to ensure full compliance with corporate and legal requirements
• Have technical sign off responsibility for Change Controls (where appropriate)
• Carry out root cause analysis.
• Responsible for ensuring the live environment is available to the business and is not compromised by project developments or routine BAU changes.
• Manage security infrastructure including firewalls, remote access systems, intrusion prevention devices, proxies and antivirus tools etc.
• Advise and support Tech Support team and business managers on security issues
• Record security data information and respond to an information security incident. Recommend actions, and implement solutions defined by the Information Security Manager.
• Implement and maintain security policies as defined by the Information Security Manager.
• Assist in the development of current operational processes and documentation or creation if they currently don’t exist.
• Carry out security reporting as requested by the Network and Security Platform Manager or Information Security Manager. In conjunction with the Information Security Manager implement monitoring controls, tracking and reporting
• Assist in the planning and execution of projects.
Team Member Duties
• Participate in the out-of-hours on call rota providing expert and professional technical support to the business
• Receive and resolve incidents via the incident management tool
• Contribute to the training and awareness of current and new staff.
• Attend meetings relating to the on-boarding of new systems, clients, stakeholders into Technology Support.
• Act as a point of escalation for high profile incidents, taking personal ownership of communication / escalation as necessary
Supplier Management:
• Develop a good relationship with all key suppliers and ensure product roadmaps are understood and communicated where relevant to others members of the team and management.
Service Management:
• Follow ITIL best practice relating to incident management, problem management, change management, configuration management and capacity management.
• Follow ITIL best practice relating to service management and their associated tool set in relation to incident logging, prioritisation, SLA’s and escalation.
• Ensure resolution of complex issues are recorded and fed back to the support team in an agreed format and stored in an accessible central location (ie Incident\Problem Management tools)
• Maintain records and logs of work done using the department service desk tools, on the installation, modification and repair of systems.
Self Development:
• Keep abreast of all current and relevant security issues and developments including but not limited to latest weaknesses on hardware and software platform in use by Red Bee Media, latest threats, current available Supplier patches etc
Business Interaction:
• Act as a champion within the business for issues relating to IT Security. Raise awareness and drive up conformity to business requirements and policies
• Assist in the operational aspects of Business Continuity Planning
• Have responsibility for reviewing change controls and feedback if there is a risk to the business.
• Assess new business and technical requirements and highlight risks to the business so informed decisions can be made by the Platform Manager and Head of IT.
Network Support Team Interaction:
• Work alongside the RBM network team to provide advice on security issues and for the Network team to provide advice on all network issues that may be affecting RBM service.
Person Specification
Experience and Knowledge
A range of the following experience and knowledge areas is required:
• Hands on security experience in a large, structured, multi vendor enterprise environment
• Proven tract record of customer liaison and fault management with experience in a support and / or NOC environment.
• Experienced in the deployment of complex security solutions in demanding and mission critical environments
• Good understanding of TCP/IP and networking technologies/protocols
• Good experience and strong knowledge of a wide range of security technologies
including:
• Checkpoint VPN-1
• Juniper firewalls and SSL VPN
• Crossbeam X-Series
• Bluecoat Proxy SG and Proxy AV
• Nokia IP Security Platforms
• Tipping Point IPS
• Fortinet firewalls
• Knowledge of Foundry / Brocade or Cisco, Infoblox, Nagios and SNMPc advantageous
• The ability to use and update formalised knowledge management systems
• Experience of working in a technical environment which follows strict change control policy and procedures.
• Experience of ITIL Service Management principles
• Well developed team skills with the ability to organise and prioritise work to ensure deadlines are met
• Good interpersonal skills with the ability to liaise effectively with different levels and audiences.
• UNIX / Linux Operating Systems
• Perl scripting
• Microsoft Operating Systems
• Server, PC and Mac hardware and software
Skills and Behaviour
• A high level of interpersonal skills and the ability to communicate tactfully and persuasively with a wide range of people
• First class verbal and written communication skills with the ability to explain technical issues to a non technical person.
• Strong ownership and sense of responsibility
• Good interpersonal skills with the ability to build relationships with a wide range of diverse stakeholders
• Experience of working under pressure in a dynamic and fast moving technical environment
• Takes a keen interest in and keeps up to date with latest changes and developments in IT security
• Ability to work as an effective member of a team, but also capable of carrying out tasks unsupervised
• Able to inspire confidence in all customers of the Tech Support department, whether internal or external.
• Able to appreciate and where appropriate accommodate the sometimes competing priorities of ‘ideal’ security solutions versus the other priorities of the business such cost and service interruption etc.
• Strong understanding of the need to maintain good records of system configuration and other associated documentation. Able to prepare such documents and champion their use and maintenance within the department.
• Understands and follows Red Bee defined incident, problem, change and configuration management processes.
• Ability to remain cool and calm under pressure
• Appreciates the unique nature of a live broadcast environment and the risks associated.
Competencies
Technical Skills - with the methodologies, operational and manual skills appropriate for a senior IT security role in a large business
Flexibility and Innovation - the ability to adapt to new situations and devise improvements to current situations. Can demonstrate the ability to apply skills and experience to new problems and areas of research.
Analytical Thinking - capability of original thinking, an enquiring mind with established analytic investigative skills. An ability to make judgement necessary to choose the best solutions to engineering problems
Organisation and Planning - time and resource management skills to develop appropriate methods of working to meet the demands of the role.
Working with others - the ability to work co-operatively and supportively with others
Self-development and Self-motivation - working continuously and proactively to develop the knowledge and skills required.
Communication Skills - the ability to give and receive information in order to further knowledge and understanding and to present and promote our work.
Commitment and Resilience - taking ownership of work problems and maintaining a high level of performance in the face of pressure. Can demonstrate an approach to work that is characterised by commitment, motivation and energy.
(A job description is a written statement of the essential characteristics of the job, with its principal accountabilities, incorporating a note of the skills, knowledge and experience required for a satisfactory level of performance. This is not intended to be a complete, detailed account of all aspects of the duties involved).