Principal Security Engineer

Role profile:

 A Principal Security Engineer is needed to handle AD Remediation and Windows Server Remediation. The individual needs to have a good understanding of the technologies used for the implementation of several technical security initiatives and standards to identify and resolve all security vulnerabilities within the LSEG active directory infrastructure, on prem and Entra ID. They should have excellent overall AD knowledge in both environments and be able to be proficient in PowerShell and Excel to build reports and Pivot tables.

The role involves looking at remediating and implementing controls within the estate to lockdown and secure all AD vulnerabilities as well as creating controls for audits. It is a highly focused security centric role looking at the standard methodologies for securing privileged access accounts, security groups, servers and Domain Controllers and a wider project for remediation of the active directory infrastructure

Role summary:

• Remediation of any vulnerabilities found on servers and the Active Directory Infrastructure
• Analysing audit findings and contribute to the responses for these findings
• Responding to ad-hoc initiatives and additional workstreams
• Updating all DSST documentation and related sites
• Liaise with business owners and departmental heads so that we can both discover and document all the above and their status
• Update dashboards and outline solutions and rationale to senior customers.
• Collaborate with other LSEG IT and infrastructure teams to help with the solutioning and remediation of security vulnerabilities found
• Act as gatekeepers to the AD and its privileged accounts and groups ensuring that all controls are in place for the in-scope AD Domains

What you'll be doing:

• Be a technical resource prepared to aid any of the in-flight workstreams
• Attend all Project Meetings and standups and represent the Team
• Keep the Dashboard up to date and chase for appropriate ticket updating and closure
• Set up progress reports collaborating closely with Power Bi Team
• Recommend alterations to development and design that improve quality of systems and/or procedures
• Adhere to and help shape policies and procedures, as well as implement appropriate controls and compliance monitoring to optimally deliver and safeguard information assets.
• Help take ownership for all engineering input and project outputs for this project.
• Provide frequent status reports of all implementation tasks and maintain risks and issues for management as and if they arise.
• Ensure changes are accurately impact assessed and implemented and are represented at CAB.
• Assist with all Security related project work as well as BAU tasks as advised by Senior Manager
• Understand existing sophisticated environment and navigate to a successful implementation of products
• Assist in the delivery of all initiatives and implementations some of which will be at weekends or unsociable hours.
• Provide full aftercare assistance for all Admin and security group remediation implementations
• Provide technical Support and guidance for all security implementations and new standards and procedures to SAM team and staff
• Implement changes to and support Active Directory and associated services
• Help to spearhead efforts to promote new Security standards group wide.

What you'll bring:

• The ideal candidate will possess broad abilities including solutions design, problem solving and resolution, PowerShell scripting, and documentation. The candidate should be an excellent communicator and deal expertly with all levels of seniority
• Be prepared to help technically with any of the workstreams as required
• Very good Active Directory Knowledge (15 years minimum) in an Enterprise environment – Hierarchy / management group design, deployment, configuration and BAU support.
• Experience with all aspects of AD user and group Management
• Must be excellent liaising with Service line owners and customers
• Excellent document authoring skills
• Solid grasp of Windows Server Technologies e.g. Service accounts and policies restricting their use through Group membership and GPO
• Service Now (OSM) as the primary ITSM tool
• PAM product such as Beyond Trust
•  Advanced Excel

What you’ll get in return:

We recognize that to attract the best talent, we need to be flexible, and we are open to discussing work arrangements with you. We take hybrid approach to workplace; this role is hybrid/ digital first. People are at the heart of what we do and drive the success of our business.  Our colleagues thrive personally and professionally through our shared values of Integrity, Partnership, Innovation and Excellence are at the core of our culture.  We embrace diversity and actively seek to attract people with unique backgrounds and perspectives.  We are always looking at ways to become more agile, so we meet the needs of our teams and customers. We believe that an inclusive collaborative workplace is pivotal to our success and supports the potential and growth of all colleagues at LSEG

LSEG is a leading global financial markets infrastructure and data provider. Our purpose is driving financial stability, empowering economies and enabling customers to create sustainable growth.

Our purpose is the foundation on which our culture is built. Our values of Integrity, Partnership, Excellence and Change underpin our purpose and set the standard for everything we do, every day. They go to the heart of who we are and guide our decision making and everyday actions.

Working with us means that you will be part of a dynamic organisation of 25,000 people across 65 countries. However, we will value your individuality and enable you to bring your true self to work so you can help enrich our diverse workforce. You will be part of a collaborative and creative culture where we encourage new ideas and are committed to sustainability across our global business. You will experience the critical role we have in helping to re-engineer the financial ecosystem to support and drive sustainable economic growth. Together, we are aiming to achieve this growth by accelerating the just transition to net zero, enabling growth of the green economy and creating inclusive economic opportunity.

LSEG offers a range of tailored benefits and support, including healthcare, retirement planning, paid volunteering days and wellbeing initiatives.

We are proud to be an equal opportunities employer. This means that we do not discriminate on the basis of anyone’s race, religion, colour, national origin, gender, sexual orientation, gender identity, gender expression, age, marital status, veteran status, pregnancy or disability, or any other basis protected under applicable law. Conforming with applicable law, we can reasonably accommodate applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs.

Please take a moment to read this privacy notice carefully, as it describes what personal information London Stock Exchange Group (LSEG) (we) may hold about you, what it’s used for, and how it’s obtained, your rights and how to contact us as a data subject.

If you are submitting as a Recruitment Agency Partner, it is essential and your responsibility to ensure that candidates applying to LSEG are aware of this privacy notice.