Security Engineer

About EDT

Eviosys Digital Technology (EDT) provides Information Technology services to the wider Eviosys business. Covering 45 manufacturing plants we provide systems to manage the entire business landscape
from research and development through procurement, supply chain, manufacturing, and sales, as well as supporting functions including HR and finance.

Our capabilities include Business Process Improvement, Project Management, Application Maintenance, and Support, Infrastructure Management, Cyber Security, and a range of enablement functions for IT 
including Budgeting, Finance, Vendor Management, and Governance.

We are currently looking to strengthen our existing security team as we deliver this transformation plan. 

About The Role

As part of the Security Team within Eviosys Digital Technology (EDT), the Security Engineer role will support the systems and applications that deliver enterprise security services for Eviosys. 

 
With a focus on identity and access management, the Security Engineer will provide expert knowledge to support the planning, design, development, and deployment of centralized IAM and PAM solutions and the delivery of the enterprise-level Privileged Access Management program.  The role will also support the implementation and management of all cyber security technologies and services in use at Eviosys. 

Key Responsibilities

• Provide expert knowledge and act as a subject matter expert on key principles of (IAM) with an in-depth knowledge in the areas of authentication and authorization systems, identity lifecycle management, and identity governance. 
• Build the IAM strategy, and ensure its implementation is a success across the business.
• Staying up-to-date on current IAM threats and industry solutions, and ensuring IAM measures are appropriate. 
• Support the Vulnerability Management programme using vulnerability management tools to ensure efficient and effective remediation of vulnerabilities in line with best practise and policy.
• Assist with the investigation vulnerability results and remediation efforts. 
• Assist with management of the SIEM service, including the ingestion of new log sources, configuration of alerting and providing expert knowledge to aid the investigation of alerts where required.
• Support the integration of new cyber security services and technologies with existing systems and infrastructure. 
• Work with colleagues and stakeholders to support the adherence with security policies, standards, and baselines across the organisation.
• Contribute to the creation and maintenance of relevant security policies and standards.  
• Support the delivery of implementing requirements of the NIST standard. 

Key Skills

Essential Experience

• Identity and Access Management (IAM) and Privileged Access Management (PAM) experience, including delivery experience 
• In-depth understanding of modern authentication solutions using SAML/OAuth/OIDC 
• Experience of design and delivery related to an Identity Provider, e.g., Active Directory, Azure Active Directory, SailPoint IdentityNow.  
• Understanding of risk management, including quantification and remediation
• Technical proficiency in identity protocols (SAML, OIDC, LDAP, Kerberos, FIDO2, WebAuthN

Skills/Knowledge/Education

• A desire to learn, and ability to apply technical security knowledge to new and unfamiliar areas
• A passion for improving processes through scripting or automation
• Excellent verbal and written communication skills.
• Stay up-to-date on current IAM threats and industry solutions. 

Desirable

• Certified Identity Management Professional (CIMP) 
• Certified Identity and Access Manager (CIAM) 
• Certified Identity and Security Technologist (CIST) 
• NIST experience a plus 
• Familiarity with risk management and understanding of regulatory compliance frameworks (e.g., ISO/SOC/NIST)