Ascent Sourcing Ltd

IT Security Engineer Feltham (Hybrid) £45,000 - £55,000 Base + Benefits Overview The IT Security Engineer is responsible for designing, implementing, and maintaining the security controls that protect the organization's systems, networks, and data. This role works closely with IT, DevOps, and business teams to ensure that security is embedded throughout technology operations and architecture. The IT Security Engineer is key to detecting, preventing, and responding to cybersecurity threats in a proactive and efficient manner. Key Responsibilities: Security Architecture & Implementation Design, deploy, and manage security solutions including firewalls, intrusion detection/prevention systems, endpoint protection, SIEM, and identity management platforms. Implement secure network architecture and enforce segmentation and least-privilege access controls. Support secure cloud environments across Azure, AWS, or GCP (e.g., IAM, security groups, encryption, KMS). Threat Detection & Incident Response Monitor and analyze security alerts and network traffic for threats or suspicious activity. Lead or support incident response activities: investigation, containment, eradication, recovery, and reporting. Conduct root cause analysis and implement security hardening improvements. Vulnerability & Risk Management Run regular vulnerability scans and penetration testing activities; track remediation of findings. Evaluate risks and recommend security enhancements or compensating controls. Maintain asset inventories and ensure patching and configuration baselines are followed. Security Governance & Compliance Contribute to maintaining security standards and aligning with frameworks such as ISO 27001, NIST, CIS, or SOC 2. Support audits, evidence collection, and compliance reporting (e.g., GDPR, PCI-DSS). Develop and maintain documentation for policies, procedures, architecture, and runbooks. Collaboration & Knowledge Sharing Work with IT operations, cloud, and development teams to embed security in system and application designs. Provide expert security guidance during solution design, procurement, and change reviews. Support security awareness training and communicate best practices to employees. Qualifications Education: Bachelor's degree in information security, Computer Science, Networking, or a related field. Experience: 3+ years' experience in cybersecurity, network engineering, or IT infrastructure security roles. Certifications (Preferred): CompTIA Security+, CEH, OSCP, CISSP, CCSP, Azure/AWS security certifications. Skills & Competencies Strong knowledge of network security (TCP/IP, VPNs, DNS, firewalls). Experience with SIEM tools (e.g., Splunk, Sentinel, QRadar) and EDR platforms. Familiarity with scripting or automation (PowerShell, Python, Bash). Understanding of secure cloud architecture and Zero Trust principles. Ability to analyze complex technical issues and communicate clearly to technical and non-technical audiences.