Senior Security Engineer

Senior Security Engineer – SC Cleared

Location: Manchester – 5 days per week onsite

Salary: £100,000 – £140,000 + benefits

Clearance: Active SC clearance required as a minimum, with willingness to undergo DV clearance

Senior Security Engineer required for a major secure programme in Manchester. This Senior Security Engineer role will suit an experienced Security Engineer, Infrastructure Security Engineer, Network Security Engineer, Platform Security Engineer, Cyber Security Engineer or DevSecOps Engineer with strong enterprise firewalling, secure infrastructure, Elastic / SIEM, public cloud security and hands-on security engineering experience.

This is a senior, hands-on role working across firewalling, on-premise and cloud security, secure infrastructure, network security, workload segmentation, hardening, monitoring, incident response and security architecture. The environment is highly secure and regulated, with a strong focus on enterprise firewalling, Elastic / Elasticsearch, VMware-based infrastructure, Cisco, Palo Alto, Windows hardening and AWS / public cloud security.

Benefits

Salary between £100,000 – £140,000 depending on experience

Full employee benefits package

Private healthcare

Pension

Major secure programme

Senior technical role with strategic influence

Opportunity to shape security across a critical platform

High-security, high-impact environment

The Role

You will act as a key technical security point of contact across the platform, working closely with infrastructure, operations, engineering and leadership teams.

The role requires someone comfortable operating at both strategic and hands-on level: able to advise on approach and direction, while remaining close to the technical detail.

Responsibilities will include

Designing, configuring and improving security controls across secure infrastructure

Working heavily across enterprise firewalling, firewall policy, network segmentation and workload segmentation

Managing and hardening Palo Alto Networks firewalls, including Panorama, App-ID / User-ID, NAT, VPN and threat prevention

Supporting Cisco security technologies, including ASA / FTD firewalls, ISE and secure routing / switching

Working with VMware NSX / vDefend security controls, including distributed firewall policies and micro-segmentation

Working with Elastic Stack / Elastic Security for logging, SIEM, monitoring, threat detection and dashboards

Supporting AWS / public cloud security across secure and regulated environments

Hardening Windows Server environments, Active Directory, Group Policy and endpoint configurations

Implementing, auditing and remediating against CIS Benchmarks, STIGs and security hardening standards

Supporting vulnerability management, incident response, root cause analysis and remediation planning

Embedding security into DevSecOps / CI/CD practices, including automated security testing and policy-as-code

Collaborating with vendors, auditors and internal teams in a high-security environment

Mentoring engineers and helping promote a security-first culture

Key Skills

The successful Senior Security Engineer will ideally have experience across several of the following:

Enterprise firewalling, firewall policy, firewall hardening and firewall management

Palo Alto Networks, Panorama, GlobalProtect, threat prevention, NAT, VPN, App-ID / User-ID

Cisco ASA, FTD, ISE, secure routing and switching

Elastic Stack, Elasticsearch, Kibana, Beats, Logstash, Elastic Security, SIEM or security monitoring

AWS security, public cloud security or secure cloud infrastructure

VMware NSX, vDefend, distributed firewalling or micro-segmentation

Security engineering within secure, regulated or high-compliance environments

On-premise infrastructure security

Network security, workload segmentation and zero-trust principles

Windows Server hardening, Active Directory, Group Policy and endpoint security

CIS Benchmarks, STIGs and practical hardening standards

Vulnerability management, incident response and remediation

DevSecOps, CI/CD security, automated security testing or policy-as-code

TCP/IP, OSI model, routing, VPNs, IAM and encryption

Clearance Requirements

Active UK SC clearance is required as a minimum.

Candidates must also be willing and able to undergo DV clearance due to the nature of the programme and end-client environment.

What We Are Looking For

This role would suit a senior hands-on security engineer, infrastructure security engineer, network security engineer, platform security engineer, cyber security engineer, DevSecOps engineer or security-focused infrastructure specialist.

You will need to be comfortable working onsite in Manchester, operating in a high-security environment and taking responsibility for security across critical systems.

This is not a passive monitoring role. It requires someone who can own, improve and shape security across a critical platform while remaining close to the technology.

If you are an experienced Senior Security Engineer / Security Engineer with active SC clearance and strong experience across enterprise firewalling, secure infrastructure, Elastic / SIEM, VMware, Palo Alto, Cisco, Windows hardening and AWS / public cloud security, please apply for a confidential discussion or contact me directly on LinkedIn.

All the best,

Charlie Syrett at Richmond Consulting Ltd