Infrastructure Engineer

The Role

As a Senior Security Infrastructure Engineer, you will provide technical leadership and hands-on expertise in securing enterprise infrastructure and networks. This critical role ensures the resilience, compliance, and integrity of systems across a complex, multi-technology environment.

Key Responsibilities

• Infrastructure & Network Security: Design, implement, and maintain secure network architectures, including firewalls, VPNs, IDS/IPS, and segmentation controls.
• Microsoft Platform Security: Design and harden Microsoft Operating Systems (Server and Desktop), Active Directory, and Group Policies to enforce robust security baselines.
• Authentication & Access Control: Deploy and manage Multifactor Authentication solutions (YubiKey, RSA) to safeguard identity and access across the enterprise.
• Virtualisation & Endpoint Protection: Secure virtualisation platforms (Hyper-V, VMware) and implement endpoint security solutions including EDR, anti-malware, and DLP.
• Monitoring & Threat Detection: Operate and optimise SIEM tools (Splunk, Microsoft Sentinel) for proactive threat detection and incident response.
• Vulnerability Management: Perform vulnerability assessments using Qualys and Tenable, driving remediation and continuous improvement.
• Compliance & Governance: Align security controls with frameworks such as ISO 27001, NIST, CIS, and Cyber Essentials, supporting audits and certification processes.

Role Context

You will join the Cybersecurity Engineering team, contributing to both operational security and strategic initiatives. This includes:

• Technical assurance and peer reviews
• Input into security architecture and design standards
• Knowledge sharing through team briefings and technical exchanges

Scope of Impact

The Senior Security Infrastructure Engineer leads technical implementation and governance across:

• Enterprise infrastructure and network security
• Identity and access management
• Endpoint and virtualisation security
• Monitoring, detection, and vulnerability remediation

You will evaluate alternative approaches considering risk, compliance, cost, and operational impact, ensuring sustainable security outcomes.

Core Duties

• Design, build and configure secure network and system architectures.
• Implement and enforce security baselines across Microsoft platforms.
• Manage authentication, access control, and endpoint protection solutions.
• Provide technical input into security policies and compliance audits.
• Collaborate with cross-functional teams to embed security into all stages of delivery.

Employment is subject to satisfactory BPSS and SC security clearance which requires 5 years continuous UK address history at the point of application. Travel to client sites and [Employer hidden] offices will be required.

What We’re Looking For

*Essential*

• Proven experience in infrastructure or network security within complex enterprise environments.
• Strong knowledge of Microsoft technologies (Windows Server/Desktop, Active Directory, Group Policies).
• Hands-on experience with MFA solutions, virtualisation platforms, and network security appliances.
• Understanding of SIEM operations, vulnerability management, and endpoint protection.
• Familiarity with recognised security frameworks (ISO 27001, NIST, CIS, CE).
• Excellent problem-solving skills and ability to work under pressure.
• Strong communication skills to engage stakeholders and influence technical decisions.

Why Join [Employer hidden]

• Work on impactful projects that drive efficiency and innovation across diverse sectors.
• Access professional development pathways tailored to your career ambitions.
• Enjoy flexible working arrangements and a competitive benefits package.

What the Team Say

> *“At [Employer hidden], I love being part of a team that thrives on exciting, fast-paced projects in complex environments. We focus on delivering real value rather than getting bogged down by unnecessary processes. The collaborative culture encourages initiative and empowers me to make impactful decisions, with support always available when I need it. I also feel supported in my project work and career development, with plenty of opportunities to enhance my skills and take on new challenges. [Employer hidden]’s investment in its people ensures I have both the tools and encouragement to achieve my goals.*

> *As someone with a challenging home life, including children with additional needs, the hybrid working model has been invaluable. [Employer hidden] treats me as a professional, trusting me to manage my work, projects, and outputs while balancing my family commitments. The flexibility to adapt my schedule for school runs and care needs, combined with a supportive team and rewarding work, makes this a truly unique place to grow and succeed.”*

Other Information

[Employer hidden] is committed to investing in people, offering clear progression pathway into our consultancy service, and we will passionately support professional growth to develop our employees.

Flexible working is available including part-time / term time working patterns. All suggestions are welcomed to be discussed as part of a proposed employment package.

[Employer hidden] is dedicated to fostering an inclusive workplace. Our commitment is to ensure equal opportunities for all in both employment and career advancement. We base our decisions on individual merit, qualifications and suitability for the role, without regard to gender, age, marital or civil partnership status, sexual orientation, ethnicity, disability, race, religion or national background.

*Bonus payments are discretionary and awarded upon successful completion of probation.