Senior Information Security Engineer

Must be able to achieve Security Clearance 

What is the purpose of this role: 

ANS are seeking a highly skilled and motivated Information Senior Security Engineer to join our internal security team. You will be responsible for safeguarding our organisation’s systems and networks against threats, ensuring that our internal infrastructure remains secure and resilient to potential attacks. You will design, implement, and maintain security protocols, triage and investigate security incidents, and work closely with cross-functional teams to ensure best security practices are followed.

A Senior Information Security Engineer at ANS should stay aligned to the latest security trends and technologies, and work closely with business stakeholders to ensure that ANS’s internal security solutions align with the overall organisational strategy

What will I be doing?

• Security Architecture & Implementation: Design and implement security solutions to protect data, networks, and systems from unauthorised access, threats, and vulnerabilities.
• Monitoring & Incident Response: Continuously monitor network traffic and system logs for security incidents, investigate, triage and contain breaches, and coordinate response efforts.
• Risk Assessment: Conduct vulnerability assessments and organise penetration testing to identify security gaps and deals with any recommendations, recommend n necessary fixes or improvements as a result of those tests.
• Security Protocols: Develop and enforce security policies, standards, and procedures to ensure secure operations and recommend improvements.
• Threat Intelligence & Prevention: Stay updated on the latest cyber threats, emerging technologies, and trends in security to anticipate potential vulnerabilities.
• System Hardening: Perform system hardening by ensuring servers, endpoints, applications, and databases meet security standards.
• Security Audits: Support internal and external audits of information security practices and systems, ensuring compliance with industry regulations (e.g., GDPR, SOC2, CE+, PCI-DSS, ISO).
• Collaboration: Work closely with ANS technical teams to integrate security best practices into all aspects of system architecture and development lifecycles. As well as managing key relationships with stakeholders. 
• Training & Awareness: Provide security awareness training to employees and ensure everyone understands the importance of cybersecurity.
• Artificial Intelligence: Implementation & monitoring of security in relation to AI applications and software. Whilst allowing ANS to advnance within the AI sector.  

What will I bring to the role?

• Significant experience in a similar role.
• Hands-on experience with security technologies such as firewalls, IDS/IPS, SIEM, endpoint protection, encryption, and vulnerability scanners.
• Proficiency in security frameworks and standards such as NIST, ISO 27001, and CIS controls.
• Strong understanding of network protocols, firewalls, VPNs, and encryption techniques.
• Experience with scripting or programming languages for automation and security testing.
• Strong analytical and problem-solving skills with attention to detail.
• Excellent communication skills, both written and verbal, with the ability to convey complex security concepts to non-technical stakeholders.
• Experince with PCI DSS requirements and the implementation of these within a business. 

Preferred Skills:

• Experience with cloud security in AWS of Azure Cloud environments.
• Experience with incident response frameworks and forensics.
• Familiarity with security automation tools (e.g., Ansible, Terraform)

What is needed to do the role?

• Qualification in Cyber Security, Information Technology, Computer Science, or a related field.
• Certifications such as CISSP, CEH, CISM, or CompTIA Security+ are highly desirable.