Work on Technology That Protects What Matters
At SiXworks, we build secure digital solutions that support Defence and National Security missions. Our teams work on complex problems where reliability, security, and speed of innovation matter.
We’re looking for a Security Engineer who enjoys solving difficult technical challenges and wants their work to have real operational impact.
What You’ll Do
As a Security Engineer, you’ll help design, build, and deliver secure digital solutions in highly secure environments. You’ll work alongside engineers, architects, and delivery specialists to develop technology that enables faster, safer decision‑making for critical operations.
Credential Lifecycle Management
- Manually creating or bulk‑importing passwords, SSH keys, and API keys
- Configuring and verifying Remote Password Changing (RPC) to ensure credentials rotate on a set schedule without service interruption.
- Checking our servers can successfully communicate with target systems to validate that stored credentials are still correct.
Discovery & Network Visibility
- Running regular Discovery scans across Active Directory and network segments to identify new privileged accounts, service accounts, and dependencies.
- Mapping how service accounts are used by Windows Services, Scheduled Tasks, or IIS Application Pools to ensure rotation doesn’t break critical systems.
System Maintenance & Performance
- Proactive management of technical vulnerabilities and system security.
- Monitoring the status of Distributed Engines (DE) to ensure they are online and processing tasks like heartbeats and password changes without latency.
- Monitoring and improving performance and ensuring all secrets are bound to launchers, and secret templates are used and updated as required.
- Configuring and verifying automated database backups (full, differential, and log) to meet Recovery Point Objectives (RPO).
- Applying security patches and upgrades to our platforms.
- Maintaining the licenses and certifications and updating where required.
- Checking the results of recent Discovery scans to see if new privileged accounts, service accounts, or dependencies were found.
Access Governance
- Managing Role‑Based Access Control (RBAC) by creating roles, defining folder structures, and setting granular permissions for users and groups.
Audit & Compliance
- Generating and reviewing audit logs and reports (e.g., most active users, failed heartbeats) to detect unusual activity and prove compliance.
- Configuring launchers to record privileged sessions, allowing or disallowing full keystroke and video audits of administrative work.
Technical Troubleshooting
- Resolving issues related to firewall requests and load balancer configuration.
Security Oversight
- Monitoring active sessions to detect any currently active privileged sessions, particularly on high‑value assets like Domain Controllers.
- Troubleshooting any Remote Password Changing (RPC) failures from the previous 24 hours to prevent account lockouts or stale credentials.
- Correlating server alerts with your SIEM to investigate suspicious activity, such as multiple failed login attempts or large‑scale secret exports.
What We’re Looking For
We value people who take ownership, think critically, and enjoy working as part of a collaborative team tackling complex challenges. You don’t need to tick every box, but we’re particularly interested in people with skills/experience in:
- Deploying and managing security tooling (vulnerability scanning, EDR agents, etc).
- Deploying and managing identity solutions (directory services, IdPs, privileged access management solutions).
- Basic understanding of threat frameworks (such as ATT&CK).
- High standards in written report and/or design documentation.
- Working at a technical low‑level design level with the project team.
- Knowledge and experience of Agile, DevSecOps, CI/CD principles and their application in secure environments.
- Understanding of MOD assurance and policies.
Just as important are curiosity, strong problem‑solving ability, and the motivation to continuously improve how technology is designed and delivered.
Benefits
We offer competitive salaries and a package that supports your wellbeing and development, including 25 days annual leave + bank holidays, free private medical cover and life assurance, generous pension (10% employer, 5% employee contribution), bonus and professional development and training support. In addition to secure parking, gym, café & restaurant on site and lots of open breakout spaces.
A word on UK Security Clearance
Due to the secure nature of the position and working environment, you must have or be eligible to obtain the highest level of Security Clearance. More details relating to UK Security Clearance can be found here: United Kingdom Security Vetting: clearance levels - GOV.UK (www.gov.uk)
Interested?
Please apply!
#J-18808-Ljbffr