Cyber Security Infrastructure Engineer

This role within our Digital Security Transformation Programme is working in a security engineering team with an objective to improve the Department's Cyber Security posture across our estate of Digital Services, embedding security controls to ensuring we are secure by design. You will have experience in cyber security design including the products, services and techniques used to build and operate cyber security services. Understanding the impact of a security breach and ability to advise on cyber security protocols. Please note this role requires you to pass Security Check clearance. For further information, please see 'Selection process details'. As a Cyber Security Engineer you will be responsible for embedding security into all stages of the Software Development Life Cycle (SDLC) in a large-scale, complex environment. You will play a key role in maintaining the security of nearly 1 billion lines of code by implementing and maintaining modern software delivery practices, including automation and continuous integration/continuous delivery (CI/CD) pipelines. You will ensure the development and deployment of secure, resilient software solutions. Working collaboratively with development, operations, and security teams, you will design and implement security policies and controls that prevent vulnerabilities, ensuring alignment with industry best practices. You will contribute to the enhancement of security processes and tooling that support the DevOps model, ensuring security is integrated at every step of the development cycle.,

• Embed security practices throughout the SDLC, leveraging automation, DevOps, and CI/CD pipelines to maintain the integrity of vast, diverse codebases
• Collaborate with engineering and development teams to implement security controls that protect against vulnerabilities in code and infrastructure
• Develop and automate security policies and processes within the CI/CD pipeline, ensuring timely detection and remediation of security issues
• Contribute to the operational security of code and infrastructure in both cloud-native and on-premise environments
• Assist in building and maintaining security tooling to monitor and enforce security standards in the SDLC
• Actively participate in incident response and remediation efforts, working with security operations teams to identify and mitigate risks
• Stay current with industry trends, standards, and best practices for secure software development, sharing knowledge across teams
  
  It would also be helpful to have skills in the following areas:
• Hands-on Experience with Security Tools
• Experience with any of the following security platforms or tools:
+ Vulnerability scanning and management tools (e.g., SAST and DAST) + Cloud security services (e.g., AWS GuardDuty, Azure Security Centre) + Security Orchestration, Automation, and Response (SOAR) platforms + Web Application Firewalls (WAFs) and Endpoint Detection and Response (EDR) solutions
• Understanding of Security in DevOps: Experience or familiarity with integrating security into DevOps workflows (DevSecOps)
• Programming/Scripting Skills: Familiarity with languages such as Python, nodeJs, Bash, or similar for automating security tasks