The Opportunity:

ESW is looking for an experienced, innovative, and energetic Senior Security Engineer to help drive our various Security Operations functions. The successful candidate will work with the Security Operations Manager and team, development and infrastructure teams and partner with the product teams to drive best in class security solutions in our primarily Azure-based platform.

As a Senior Security Engineer, you will be working within a team of security engineers to drive the adoption of and improve security best practices across all ESW environments. You will be a key member of the team and responsible for a wide range of security projects. The right candidate will influence others by demonstrating professionalism, passion/enthusiasm, providing communication and creating a collaborative environment.

Key Responsibilities:

• Collect, identify, and develop best practices for specific security-related problems.
• Collaborate cross-functionally to support and improve the Security Operations team's processes.
• Experience coordinating and performing vulnerability assessments using automated and manual tools.
• Ability to review and analyze vulnerability data to identify security risks to the organization's network, infrastructure, and applications.
• Drive automation initiatives across our vulnerability management program.
• Contribute to the overall security of ESW by threat modelling and identifying security vulnerabilities and weaknesses in applications and infrastructure.
• Experience working in incident response, introducing new and improving existing incident response processes.
• Identify and understand inherent, systemic high-risk security issues that could lead to security incidents.
• Support the integration of Security into the DevOps culture.
• Identify, prioritize, and implement security improvements that maximize security while keeping developers productive.
• Knowledgeable with DAST/SAST/SCA tooling aligned with the OWASP Top 10 and CWE Top 25 to understand weaknesses and drive remediation with Development/Infrastructure teams.
• Strong problem-solving skills to analyze a business or technical problem and select the most appropriate security solutions.

Essential Experience & Behaviors:

• 5-7 years of experience in an Information Security, Security Operations, Application Security role. Security qualifications (CISSP/OSCP/CEH) are an advantage.
• Programming experience in Python, Bash, ASP.NET or C#
• Experience with penetration testing using tools such as Nessus, Burp, Volatility Framework, Metasploit, etc., an advantage.
• Detailed understanding of Windows and Azure security.
• Experience with managing endpoint and server protection technology such as anti-malware, whitelisting, and vulnerability management tools.
• Passion to work in a fast-paced eCommerce business.
• Outstanding communication skills required - primarily the ability to communicate ideas and influence others.
• Excellent operational organization skills.

What’s on offer?

• Flexible/Hybrid Working Model
• Career growth – tailored learning & development, tuition assistance and professional certification.
• Health & Wellbeing – dental & health insurance, reduced corporate gym membership.
• Work Life Balance – 25 days annual leave, flexible working, sports & social club.
• Family – paid maternity & paternity leave, life assurance, income disability cover.
• Financial – competitive salary, pension, bike to work, travel TaxSaver, relocation assistance.