Network & It Security Engineer Job In Cardiff / Caerdydd Uk

Veezu are seeking a technical individual with a passion for Networking and IT Security. As a Network and IT Security Engineer within our Technology Services team, you will be providing critical support to a small network landscape - looking after the networking infrastructure (switches, site links, VPNs, Firewalls, and Routers) while actively fulfilling the wider role of IT security operations. This role encompasses both on-premises and cloud-based networking/Security technologies across the UK.

Reporting directly to the Head of IT Operations, the successful candidate will be instrumental in maintaining and evolving our network and IT Security operations to meet the dynamic needs of our growing organization, ensuring availability, integrity, and confidentiality to an ISO27001 standard.

Role Duties

• Design, implement, support, and manage network infrastructure using Cisco and other leading networking brands.
• In conjunction with the Head of IT Operations, contribute to the networking and IT Security strategies.
• Ensure robust firewall security and efficient traffic management across multiple locations, ensuring availability, integrity, and confidentiality to an ISO27001 standard.
• Conduct network monitoring and performance analysis, proposing and implementing improvements where necessary while managing cyber risks.
• Oversee the technical aspects of the organisation’s security infrastructure, utilising log analysis, SIEM technologies, IDS/IPS, endpoint protection, and encryption to monitor, protect from, identify, and remediate security risks and events.
• Collaborate with other IT teams to integrate network management and IT Security needs in both on-premises and cloud environments using ITSM toolsets.
• Conduct regular vulnerability scans and assessments, ensuring that identified vulnerabilities are properly prioritised and mitigated in a timely manner.
• Guide IT Operations to ensure that all systems are updated with the latest security patches, minimising the window of exposure.
• Provide expert technical advice and support for networking and IT Security matters.
• Lead projects to upgrade or deliver new network components, systems, and cybersecurity services, ensuring minimal disruption to operations.
• Develop and maintain comprehensive documentation for network architecture, IT Security records, and departmental procedures.
• Act as the security operations center (SOC) to effectively monitor for unusual activities or security incidents and have a response plan in place for various types of attacks.
• Oversee post-incident forensic investigations and root cause analyses, leveraging findings to bolster the organisation’s cybersecurity controls.
• Stay abreast of the latest developments in networking and IT security technology and the cyber threat landscape.
• Manage supplier relationships to ensure effective cost-benefit and performance from contracted services.
• Conduct audits and investigations as needed, with annual testing activities undertaken.
• Apply updates to keep equipment and services up to date.
• Implement and maintain security policies on networking and IT security services to ISO27001 standards.
• Plan and deploy expansion and capacity upgrades to meet business growth.
• Recommend and integrate new network technologies to improve the efficiency and security of the network.
• Work with the wider IT team to implement new network designs and apply changes to adhere to best practice.

Competencies / Experience

• Proven experience in core networking with experience in IT Security is essential.
• Experience working with Cisco products and other major networking brands.
• Strong knowledge of network security principles.
• Experience in various cybersecurity domains, including threat intelligence, incident response, and risk assessment.
• Hands-on experience with security technologies such as firewalls, Log Management, IDS/IPS, SIEMS and endpoint protection.
• Good understanding of cybersecurity risk assessment methodologies and effective risk mitigation tactics.
• Competency in handling compliance, particularly around GDPR, PCI-DSS, and ISO 27001.
• Experience in managing services over geographical areas.
• Experience with external DNS management and web hosting.
• Proficiency in Linux, Windows Server and Group Policy would be advantageous.
• Familiarity with cloud-based networking solutions (Azure & AWS) would be advantageous.
• Willingness to travel with a full UK driving license.
• Experience managing firewalls and edge networking appliances.
• Excellent problem-solving skills and the ability to manage complex network environments.
• Strong communication and collaboration skills, with the ability to work effectively in a team.
• Relevant certifications (e.g., CCNA, CCNP) / (CISMP, CSCP, CISSP) are highly desirable.
• Experience in managing relationships with technology vendors and service providers can be a valuable addition, showing skills in negotiation and maintaining beneficial partnerships.
• Developed skills in customer service, especially involved with direct interaction with internal or external clients, stakeholders, and auditors of all levels.