Security Engineer

Introduction

Saab is a global high-technology company that offers world-leading solutions and services in defence, aviation, space and civil security. At Saab, we constantly look ahead and push boundaries for what is considered technically possible. We number over 17,000 employees and have operations on all continents. Technologically we are leaders in many areas, and more than 25% of our earnings are invested in research and development.  We collaborate with colleagues around the world who all share our challenge – to make the world a safer place.

Saab is a company with opportunities. A company where we see diversity as an asset and where you have both considerable responsibility as well as good opportunities for advancing in your career. Additionally, Saab is a company that respects each person’s needs for a rewarding life beyond work.

Role Overview

You will be part of Public Safety Solutions (PSS), which develops advanced software applications and solutions for mission critical control room operations including for Police, Fire & Rescue and Airports. Within PSS, the SecOps team is accountable for 24x7 operations and security in customer managed-service environments.

As a hands-on Security Engineer, you will bring a depth of experience in threat detection, response and vulnerability management to the small team. In role, you will have the scope to work more broadly across all aspects of security, including: design, engineer and operate the security platforms; provide security support for multiple customer managed service deployments; work with customers to deliver security requirements; and gain exposure to hybrid-cloud and full-cloud environments.   You will also work with engineers based in both the UK and Sweden to enhance security within the SAFE command & control product.

This is a fully remote position with the option of working from the Hull office. Occasional travel will be required to our customer sites.

How we work

A self-motivated team with the ability to work unsupervised securing mission-critical services.  Working to industry standards (Cyber Essentials+, ISO 27001 and CSA CCM), our collaborative team follows an everything-as-code security approach to secure a service that has a growing customer base. We are looking to expand our Security Engineering team with the addition of a hands-on person that will both complement our existing skills and help us to grow through continuous improvement.

Key responsibilities

• Accountable for security in the managed service environments
• Design, implement and operate threat detection tooling to proactively identify and respond to threats
• Design, implement and operate vulnerability scanning tools to assess, identify and respond to vulnerabilities
• Ensure proactive security is in place through automation, notifications and issue management.
• Lead technical aspects of incident response, leveraging security tools for analysis and containment
• Hands-on engineering and enhancement of the security platform
• Contribute to procedures and best practices
• Advise product engineering and customers relating to security best practice
• Remain current with security tooling and recommend updates or new procurements as needed

Experience/Qualifications

Essential requirements

• 3+ years’ experience with the design and hands-on implementation of modern security platforms
• Product specialist in at least one of
  • Endpoint Detection & Response (EDR), Elastic & Tenable
  • Vulnerability scanning tooling
  • Fortigate Firewalls
  • Ribbon SBC
• Demonstrable knowledge and experience in multiple of the following areas:
  • Identity & Access Management
  • Implementation and management of security platforms like SIEM/SOAR
  • Develop and maintain automated processes for regular vulnerability assessments
  • Securing datacenter and cloud deployments
  • Linux admin & scripting
  • Windows Server Datacenter Core & Defender Antivirus
  • Grafana
• Highly attentive with the ability to deal with changing priorities and context switching.
• A positive attitude to innovation, change and transformation are essential characteristics to be successful in this role.
• Excellent communication skills – written and verbal.

Desirable, but not essential

• Certifications such as CEH, GSEC, CCSP or similar security certifications
• VMware (vSphere, NSX-T)
• Microsoft Entra ID
• Code repositories & CI/CD pipelines
• Terraform, Packer
• Networking (Load balancing, Firewalls, TCP/IP)
• Windows Server Datacenter Core & Defender Antivirus
• Linux administration
• IaaS, SDDC, DNS, NTP
• Datacenter infrastructure management
• Familiarity with Agile methodologies, tools and ways of working

If you aspire to help create and innovate whilst developing yourself in a challenging team setting, Saab may well have the perfect conditions for you to grow. We pride ourselves on a nurturing environment, where everyone is different yet we share the same goal – to help protect people.