The company:

Netcraft is the global leader in cybercrime detection and disruption. We are a trusted partner for three of the four largest companies in the world, twelve of the fifty largest banks, and five of the world’s largest country governments. We’ve blocked almost 200 million malicious sites and perform takedowns against one-third of the world’s phishing sites. Our purpose, passion and expertise are focused on one thing: protecting the world from cybercrime.

We carry that passion into our workplace too. Our people are highly talented and everyone is genuinely valued for their unique contributions. That’s one of the many reasons Netcraft is a great place to work. From social events to wellness and recognition, we’ve got you covered.

The role:

Due to expansion, we’re seeking an experienced Senior Security Engineer to join the Security Team, focussing on cyber-resilience, security and compliance, and internal security testing.

Based at any of our UK offices (London, Bath, Manchester), but with plenty of hybrid flexibility, you’ll report to a senior manager within the Security team and work with talented colleagues across multiple global teams.

Key responsibilities will include the following:

• Improve our position and implement best practices across our cloud deployments by bringing in deep knowledge of AWS security
• Coordinating with various teams to balance priorities across developing features against addressing vulnerabilities and improving our security posture
• Identifying and assessing security risks of current operations and processes
• Collaborating with colleagues and stakeholders to develop process improvements and policies, including detecting outdated software with vulnerabilities
• Segmenting access/user privileges and managing role-based access controls
• Working on long-term projects including secret management (e.g. 1Password), SCA Tooling (e.g. Black Duck), SOC 2 and unifying compliance amongst Cloud/SaaS tools (e.g. 365)
• Helping to test and improve our incident response policies and procedures.

The reward package:

As you might expect for such an integral role, the reward package will be generous, including:

• An attractive starting base salary, reviewed annually
• Flexible and hybrid working options
• Comprehensive private health insurance, including access to a private GP service
• Company pension scheme with 4% employer contributions
• 33 days holiday per annum, incl. public holidays
• Free lunches, snacks and drinks provided in the office
• Great health and wellbeing support, with multiple resources
• Two days paid Volunteering Leave per year
• Enhanced family leave provisions
• Tax efficient cycle to work scheme
• An inclusive culture where you’ll feel genuinely valued and supported

What you’ll need to be successful:

• Varied and in-depth experience as a Security/InfoSec Engineer, ideally within a SaaS environment
• Experience with AWS security, Microsoft Defender, mobile device management, SIEM
• Familiarity with cloud security, architecting scalable and secure systems, monitoring and reporting tools
• Ability to analyse and make considered decisions, balancing the need for security against the need for people to get things done!
• A highly collaborative, solution-focussed approach
• Excellent communication skills, and the ability to build trusted relationships
• Ability to plan and prioritise a fast-moving workload.

Bonus points if you have:

• Experience in a start-up / high growth environment
• SOC 2 and/or ISO 27001 experience

If you think this role could be perfect for you, please do contact us. We’d love to hear from you.

Please note that Netcraft does not accept any unsolicited approaches from recruiters.