CORE SKILLS

• Experience working in MOD or Home Office project environments
• Strong knowledge of network and system security, including firewalls, IDS/IPS, micro-segmentation, and host security.
• Hands on experience with the following security products Trellix, Ivanti, ClearSwift, Yubikey
• Understanding of secure coding practices and common vulnerabilities (OWASP Top 10, SANS Top 25).
• Expertise in identity and access management (IAM), including RBAC, ABAC, JWT and Cookie based authentication.
• Incident detection and response in MOD environments.
• Security compliance and regulatory frameworks (e.g., NIST, CIS Benchmarks).
• Experience working with Kubernetes at an administrative level

SOFT SKILLS

• Strong leadership and mentoring abilities.
• Effective communication with development, operations, and security teams.
• Ability to advocate for security best practices in a DevOps culture.

• Develop creative solutions to complex technical issues and problems
• Work with the engineering teams to ensure systems remain at the required security posture against baseline requirements
• Work with the Security Monitoring engineering team to ensure logs are forward to the SIEM capability
• Work with the customer and appropriate agencies to develop new policies, design processes, and procedures, and develop technical designs
• Assess system vulnerabilities, implement risk mitigation strategies, validate secure systems, and test security products and systems to detect security weakness
• Maintain and support security enforcing function