Senior Security Engineer

On behalf of The Ministry of Justice, we are looking for a Senior Security Engineer (Inside IR35) for a 12 month contract based 2 or 3 days per week in London.

SC Clearance is an essential requirement for this role, as a minimum you must be willing & eligible to undergo checks. Please note, due to the exceptional requirements of this position (short-term nature of this role and speed at which we require a postholder in situ) preference may be given to candidates who meet all of the essential criteria and hold active security clearance.

The MoJ is looking to underpin its' ability to
. Implement, configure, and manage Palo Alto Networks XSIAM platform to ensure optimal performance and security.
. Develop and maintain security policies, rules, and configurations to enhance threat detection and response capabilities.
. Integrate XSIAM with other security tools and information systems to automate security operations and workflows.
. Conduct continuous monitoring and analysis of security alerts and incidents to identify trends and potential threats.

You will be joining the MIP team (Monitoring and Integration Platform) within Technology Services, which is part of Justice Digital.

The Technology Services team is responsible for all infrastructure, end user computing, onsite support and delivery of technology projects. It has responsibility for 95,000 devices and infrastructure across 900+ sites.

The requirement is to deliver against the initial phase of the security monitoring project-onboarding 67 MOJ critical services and 72+ HMCTS services proactively monitored by our in-house SOC (Security Operations Centre).

Essential Criteria for the Role
. 2+ years in security platforms management (SIEM, SOAR).
. Expertise in enterprise-level monitoring and supporting large user bases (10,000+ users).
. Experience in creating/managing security playbooks and knowledge of public sector standards.
. Experience in Xsiam correlation/playbooks.
. Excellent communication skills, able to articulate technical concepts to diverse audiences.

Technical requirements
. Proven experience with Cortex XDR, Cortex Data Lake, and Cortex XSOAR.
. Solid understanding of cloud security, network/system security fundamentals, and Scripting for automation.

Desirable experience
. Familiarity with compliance and security standards (GDPR, HIPAA, NIST).
. Familiarity with Infrastructure as Code

Please be aware that this role can only be worked within the UK and not Overseas.

In applying for this role, you acknowledge the following "this role falls in scope of the Off Payroll Working in the Public Sector legislation. Any rates of payment quoted will reflect the gross rate per day for the assignment and will be subject to appropriate taxes and statutory costs. As such the payment to the intermediary and your income resulting from this contract will be different".