Description
3rd Line Systems Engineer
Remote Working
3 months initially - ASAP START
£400 per day - inside IR35
Interviewing as of next week
Project
Reporting to the Infrastructure Architect to help deliver a cyber security programme of work. To audit and monitor currently installed infrastructure and systems to ensure that they are being used optimally and where required, to install, configure, test and document upgrades, new software and system management tools. Ensuring at all times the highest levels of systems and infrastructure availability.
You will be expected to review the current provision of critical activities such as patch management, vulnerability management, monitoring and end-point security, be able to identify areas for improvement and then work with the existing Infrastructure team to implement those changes. These changes may involve deploying a new solution or simply making configuration changes to existing set-up to improve processes and procedures.
Although the primary experience will be in Windows Server OS the candidate must also be able to demonstrate strong Linux skills as a key part of the role is helping to implement an automated patch management solution which includes a number of Linux environments.
Also very important is knowledge of the deployment and troubleshooting of Firewall and network device access control lists (ACLs) to improve the security posture of the internal network. This would also include the review and configuration of Firewall rules.
The ideal candidate will be someone who is able to demonstrate a track record of influencing change, someone who is able to work with an established team to help embed new ways of working. They need to provide evidence of having led on key security initiatives such as patch management, vulnerability management, and Security Information and Event Management (SIEM). They also need to be hands on with the knowledge and skills to test and ultimately implement system configuration changes.
Skills Experience:
Experience of using Windows Server and various flavours of Linux including Centos and Debian.E
Experience implementing and supporting Microsoft Office 365 including log analysis and report configurationE
Experience using PowerShell for Scripting within the Microsoft Office 365 environmentD
Experience supporting the use of Cisco Firewalls.D
Understanding of IaaS, PaaS and SaaS technologies with a focus on Microsoft Azure.D
Experience using server virtualisation technologies such as VMWare to provide audit and other reporting information.D
Experience of enterprise-wide software deployment including the testing and troubleshooting of application and client software rollouts.E
Experience with monitoring technologies to collect and analyse performance data.E
Experience with end point security tools.D
SkillsE/D
Excellent interpersonal, verbal and written communication skills.E
Proven problem solving skills.E
Main Duties & Responsibilities of the role:
*To carry out auditing activities across the entire server and application estate to assist with security compliance which includes, but is not limited to, the following:
oChecking for the use of default or insecure passwords;
oChecking the use of internally issued certificates; and
oReview the use of privileged accounts.
*To help embed the new managed SIEM service into business as usual operations which includes, but is not limited to, the following:
oEstablishing suitable thresholds and baselines for alerting according to the system or service type and classification;
oIdentifying the most appropriate notification methods for raising alerts;
oIdentifying those systems and services not covered under the managed SIEM service and develop processes to ensure that they are monitored accordingly; and
oAssist with configuring monitoring reports.
*To help deliver a new patch management process covering the Windows and Linux server estate and to provide support to the network engineer in managing patch deployment on the network infrastructure
*To provide support to the project team to assess and implement a vulnerability management solution.
*To assist the network engineer to review and rationalise the rule sets on the Cisco ASA Firewalls.
*To review the use of the existing end point security solution and update the existing dashboard to provide meaningful information to the support teams so they can take action as required.
*To develop and maintain documentation about the build specification of all components of the University's IT infrastructure and security according to DTS policies and standards.
*To train IT Operations staff on any new processes to ensure they can deliver first and second line support effectively to minimise the demand on the Infrastructure and Systems Team.
*To work with the Infrastructure Architect to develop and apply technical policies to ensure the secure use of the IT infrastructure and related systems in support of the University's business requirements.
*To keep the Infrastructure Architect informed at all times of any performance issues, security concerns or future IT infrastructure system developments which may affect the University.
*To provide technical advice, expertise and assistance to other teams and projects about end user hardware and system software as directed by the Infrastructure Architect.
*To follow the University's Change Management procedures and to attend change boards and project meetings and other forums as required.
*To work in an organised and tidy fashion in accordance with the University's Health and Safety and DTS policies and standards.
*To ensure that that all information is managed securely in accordance with policies and information related legislation.
Please apply with your CV if available and interested
Certes Computing (and all of its subsidiary companies) is committed to promoting equality and diversity in its business operations.