IT Security Engineer

Location:
Bristol
Vacancy Type:
Permanent
Department:
Data Governance & Architecture
About The Role

We are recruiting for an IT Security Engineer to join our team in central Bristol. As a member of the Planning, Architecture & Security services team, the role will be at the forefront of DAS’s security strategy, ensuring the confidentiality, integrity and availability of DAS’s information and information systems.

This role will focus on security and quality control in the IT department and will include designing, building and securing, scalable and robust systems. This position will help the company understand security threats and help create strategies to protect DAS’s assets and interests.

The successful applicant will need to demonstrate good technical, organisational and communication skills and be able to build close relationships across teams within the IT Department and with other technical teams and business departments across the company.

This role will include assessing security threats and risks the company faces ensuring compliance across the DAS UK Group as well as keeping up to date with new security developments and adherence to security best practice.

At DAS we support flexible working and would be open to discussing flexible working options.
About You

Professional skills/experience:

  • Able to demonstrate a good understanding of information security frameworks, standards and security best practice (ISO27001, NIST CSF, Cyber Essentials, OWASP).
  • Knowledge and adherence to data protection legislation and regulatory requirements (e.g. GDPR, FCA SYSC, PCI DSS).
  • Experience in designing secure components (e.g. networks, systems, applications, security technologies).
  • Comprehensive knowledge of network design, defence-in-depth principles and network security architecture.
  • Extensive experience and understanding of security analysis tools, defensive technologies and other security technologies (e.g. SIEM, VAS, IDS/IPS, Firewalls, IAM, NAC, patch management, anti-malware).
  • Strong working knowledge of authentication technologies (e.g. two-factor, multifactor).
  • Foundational knowledge of “BeyondCorp” principles (e.g. limiting access to confidential information, limiting remote access to applications, differentiating between corporate and personal devices, trusted endpoints).
  • Confident using Active Directory (e.g. GPO, DNS, DHCP).
  • Knowledge of endpoint security solutions (e.g. HIDS, anti-malware, file integrity, DLP).
  • AWS and cloud platforms (e.g. SaaS, IaaS, PaaS).
  • System administration, supporting multiple platforms and applications.
  • Skilled in conducting vulnerability scans and identifying vulnerabilities in systems.

Qualifications (Desirable)

  • SSCP: Systems Security Certified Practitioner
  • CRISC - Certified in Risk and Information Systems Control
  • CEH: Certified Ethical Hacker
About The Company
As a market leader in the Legal Expenses Insurance market we have undergone rapid growth in recent years.

Thousands of businesses, motorists and individuals defend or pursue legal action each year safe in the knowledge that DAS are paying their legal bills. We have always been aware that it is the people that really make it happen; the quality of our people defines the quality of the company and the standard of service we offer.

DAS are owned by the ERGO Insurance Group, one of the major insurance groups in Germany and Europe and are dedicated to the development of the best staff in the industry. At DAS, we don’t simply talk about our values they are at the heart of everything we do. They guide us with the way that we work and provide the framework for how we do business. ‘Doing the right thing’ is central to our behaviour – from building  trust, being accountable, putting our customer at the heart of everything that we do which we believe drives performance

We believe it is an exciting time to join DAS. You can expect an organisation that will challenge and develop you to progress your career.  

By giving you every opportunity to develop yourself professionally and personally, we also pride ourselves on having an open, inclusive and high energy culture that encourages a fun working environment and places our customers at the very heart of everything we do.

If you are keen to become part of our exciting future then we would love to hear from you. In addition to the very genuine development opportunities we provide we also offer an extremely generous reward and benefits package.