About the Role
The Security Engineer is a hands‑on technical role that serves as a bridge between security and infrastructure teams. Reporting to the Deputy Head of Infrastructure, the engineer prioritises and delivers security improvements across identity, endpoint and infrastructure platforms with a focus on Microsoft 365 and Azure Services.
Responsibilities
- Act as a technical liaison between security and infrastructure for relevant engineering activity.
- Translate security requirements, audit findings and technical risk into clear actions and delivery plans.
- Ensure infrastructure change and operational activity align with the organisation’s security expectations and standards.
- Escalate risks, blockers or technical weaknesses when necessary.
- Deliver and support technical security improvements across core infrastructure platforms and services.
- Implement and maintain controls related to identity, endpoint, device management and privileged access.
- Support the hardening, configuration and secure operation of Microsoft and Azure services.
- Secure management and improvement of Microsoft 365 and Azure environments, including privileged access, conditional access, authentication controls, role design and directory hygiene.
- Reduce identity‑related risk through practical remediation and improvement.
- Manage secure device management through Microsoft Intune and related endpoint tooling, including device configuration, compliance policy enforcement and baseline hardening.
- Coordinate security vulnerability remediation across infrastructure services.
- Help manage and sequence technical security priorities, technical debt and infrastructure security improvements.
- Work with the Deputy Head of Infrastructure and security stakeholders to ensure the most important risks and control improvements are addressed first.
- Ensure work is progressed in a disciplined and traceable way.
Qualifications
- Strong practical engineering experience with sound judgement and attention to detail.
- Strong working knowledge of Microsoft 365, Azure, Endpoint security and identity/access controls.
- Good understanding of infrastructure security risks and the controls used to manage them.
- Strong troubleshooting and delivery skills.
- Ability to balance security expectations with operational reality.
- Strong organisational discipline and follow‑through.
- Excellent written and verbal communication skills when working across technical teams.
- In‑depth knowledge of IT risk taxonomies with the ability to consistently classify and articulate technology risks.
Benefits
- Holiday: 182 hours (26 days)
- Quilter Incentive Scheme: All employees eligible.
- Pension Scheme: Non‑contributory company pension with optional personal contributions.
- Private Medical Insurance: Single cover with options to increase cover to include partner or children.
- Life Assurance: Four times your salary.
- Income Protection: 75% of salary, payable after 26 weeks of absence.
- Healthcare Cash Plan: Available to Jersey employees.
- Flexible benefits that can be chosen and paid for via a salary deduction.
Inclusion & Diversity
We value diversity and strive to promote inclusivity in all aspects of our culture. We believe in equal opportunities for all and celebrate the unique contributions of a diverse workforce. Every colleague can thrive in a respectful and nurturing environment.
Equal Employment Opportunity
We are committed to treating all our job applicants fairly and with respect. Our people come from all kinds of backgrounds and have a wide range of expertise, so we welcome your application regardless of your beliefs, culture, gender identity, ethnicity, sexual orientation, or disability. Please contact the talent acquisition team if you need any reasonable adjustments made to the recruitment process, require information in an alternative format or have any questions around accessibility. We will try our very best to accommodate.
#J-18808-Ljbffr…
