Position Overview:

The Sr. Cybersecurity Engineer will support the CISO in the design, implementation and monitoring of the security controls and solutions throughout the HomeServe business as well as ensuring appropriate levels of documentation are produced and maintained.

Responsibilities:

• Monitor Information Security Systems and services to identify security issues, configuration issues and report deviation from policies and standards.
• Provide security operations services.
• Operate specific information security tooling as required.
• Advise on improvement options for information security tooling configurations and usage.
• Proactively lead improvement activity and delivery of new solutions in information security tooling and process ensuring they remain cost effective and fit for purpose in an evolving threat landscape.
• Provide technical and subject matter expertise to Membership and HVAC businesses as required supporting change and business as usual activity.
• Identify, investigate, assess, provide resolution/remediation support and document security breaches and other cyber security incidents. Document information security incidents as well as analyze the circumstances enabling or permitting these incidents to take place and review the need for enhanced prevention or response capabilities (lessons learnt).
• Assist with the selection, design, build, configuration, documentation and improvement of Information Security systems and services
• Carrying out approved/authorised simulated physical cyber attacks; attempting to gain access into a company’s IT estate by exploiting physical and people based weaknesses and vulnerabilities.
• Participate in, contribute to or lead Information Security related projects and initiatives as required.
• Perform security testing to identify risks and vulnerabilities that may be present within the HomeServe IT estate.
• Proactive management of vulnerabilities and reporting these for remediation based on severity.
• Provide technical advice to, and oversight of, those who install, administer, and update systems providing information security controls.

• Maintain awareness of relevant current legislation and trends with regard to Information Security and systems compliance.
• Encourage debate amongst SMEs to generate an improvement and team culture across the business.
• Advise on good practice and ensure that any good practice being applied within individual businesses is being consistently applied and/or shared effectively.
• Where required, work with and influence project teams and business contacts in regard to security controls, risk mitigation techniques related to information security.
• Maintain awareness of IT/Security industry trends, new solutions and techniques, as well as emerging threats.
• Maintain an understanding of the requirements of industry specific regulations such as PCI-DSS.

Job Requirements:

• 5 or more years’ experience in operating or managing security solutions.
• Conversant in the latest developments and technologies in the Information Security industry.
• Knowledge of networking foundations; IP Addressing, DNS, routing etc
• Experience with computer network penetration testing and techniques.
• Understanding of firewalls, proxies, SIEM, antivirus, IDS/IPS and other security solution concepts.
• Ability to identify and mitigate network vulnerabilities and explain how to avoid them.
• Understanding of patch management with the ability to deploy patches in a timely manner while understanding business impact
• Educated to degree level (or equivalent)
• One or more appropriate security certifications, such as GSEC, GWAPT, GPEN, CEH, CISSP-ISSAP, CISA, CRISC, and CISM
• Demonstrable knowledge of information technology security, trends, leading practices, and regulatory and industry standard compliance issues such as the controls specified within ISO/IEC 27001:2013 (Information Security Management); the Payment Card Industry (PCI) Data Security Standard (DSS); the UK Cyber Security Essentials scheme, and relevant local data protection / privacy legislation
• Self-starter. Highly self-motivated and directed. Motivated to seek out answers, generate ideas, and take action.
• Strong, planning, organisational, interpersonal, analytical, and lateral thinking skills.
• Open minded and flexible approach, tactful and prepared to compromise.
• Strong ability to communicate.
• Keen attention to detail.

Salary Range: $105,794 - $141,058.50

Annual Bonus Potential: 10%

HomeServe USA is an equal opportunity employer.