Overview

Join our forward thinking team as a Network Security Engineer, where you will play a key role in safeguarding our organisations' network infrastructure as part of the 24x7 Internal Security Response (ISR) team. When not involved in incident response and triage activity with the SOC team, you will be responsible for designing, implementing and maintaining robust security solutions to protect against evolving threats. Collaborating with cross-functional teams, you will work on implementing changes securely, identifying vulnerabilities, managing security incidents and ensuring compliance with industry best practices. The role will be involved in the optimisation of network security tools to remediate "purple team" highlighted areas identified for improvement. You will also have the opportunity to immerse your time into the standardisation of network tools. This is a dynamic opportunity to contribute to security initiatives, solve complex challenges, and have a direct impact on the overall resilience of our IT environment. If you are passionate about security and proactive defence, this role is the perfect fit. If you are looking to leverage your technical skills in a values-led company that values innovation and diversity, this is the place to make an impact.

Responsibilities

• Solid understanding of networking principles (TCP/IP, DNS, routing, switching, VLANs and load balancing)
• Strong expertise in configuring, maintaining and troubleshooting firewalls e.g. Cisco, Checkpoint, Palo Alto
• Demonstrable hands-on experience in next-gen firewalls and advancing security features like IPS/IDS, SSL decryption and deep packet inspection
• Proven experience in managing secure proxy solutions (e.g. Bluecoat, F5) and the ability to implement policies for content filtering, SSL inspection and network traffic monitoring
• In depth knowledge of security protocols such as IPSec, SSL/TLS, VPNs and two factor authentication
• Understanding of network architectures and security zones (DMZ, internal networks)
• Proficient in monitoring technologies e.g. PRTG, Nagios, and understanding of cyber security capabilities and their integrations to networks infrastructure
• Existing knowledge of / aptitude to learn Darktrace Antigena and Respond, Splunk ES or LogRhythm tools
• Strong ability to interpret complex information via packet capture to identify malicious traffic and attacker behaviours (e.g., C2, exploitation, lateral movement, data exfiltration)
• Proven ability to review SOC alerting and collaborate with SOC analysts to triage Tier 1 alerts to the appropriate outcome
• Experience with LDAP and application traffic flow root cause analysis
• Demonstrable understanding of the OSI Reference Model and network protocols, including DNS, HTTP/S, SSL, SMTP, FTP/S, LDAP/S; demonstrable experience with Security Information and Event Monitoring Tools and/or Network Packet Capture tools

Company and Diversity

MBDA is a leading defence organisation. We are proud of the role we play in supporting the Armed Forces who protect our nations. We partner with governments to work together towards a common goal, defending our freedom.

We are proud of our employee-led networks, examples include: Gender Equality, Pride, Menopause Matters, Parents and Carers, Armed Forces, Ethnic Diversity, Neurodiversity, Disability and more… We recognise that everyone is unique, and we encourage you to speak to us should you require any advice, support or adjustments throughout our recruitment process.

Offer and Requirements

• Salary: £55,000 per annum (circa) with potential changes based on experience; shift allowance may apply
• Permanent, full-time role with hybrid working; 5 days per week on-site due to workload classification, 24/7 shift pattern
• Security Clearance: British Citizen. This role will require DV Clearance. BPSS and Security Check (SC) as part of the offer process
• MBDA Personnel Security Team manages clearances after offer
• Benefits: Company bonus up to £2,500; pension up to 14% total employer/employee contributions; overtime available; Flexi Leave up to 15 additional days; flexible working options
• Enhanced parental leave and related family support; site facilities include subsidised meals and car parking