Network Security Engineer (SOC)

Company: MBDA UK Ltd
Apply for the Network Security Engineer (SOC)
Location: Stevenage
Job Description:

Overview

An exciting opportunity for a passionate Network Security Engineer to join a unique, multi-national Information Management function. Ideal candidates should be committed to protecting our critical systems and ensuring the integrity and security of our network infrastructure.

Salary & Benefits

Salary: Circa £50,000 depending on experience + shift allowance.

  • Company bonus: Up to £2,500 (based on company performance and will vary year to year)
  • Pension: maximum total (employer and employee) contribution of up to 14%
  • Overtime: opportunity for paid overtime
  • Flexi Leave: Up to 15 additional days
  • Enhanced parental leave: offers up to 26 weeks for maternity, adoption and shared parental leave – enhancements are available for paternity leave, neonatal leave and fertility testing and treatments
  • Facilities: Fantastic site facilities including subsidised meals, free car parking and much more…

Working Arrangement

Dynamic (hybrid): 5 days per week on-site due to workload classification, working a 24/7 Shift Pattern.

Security Clearance

This role will require DV Clearance. Restrictions and/or limitations relating to nationality and/or rights to work may apply. After offer, all successful candidates must undergo HMG BPSS and a Security Check (SC) clearance, managed by the MBDA Personnel Security Team.

The Opportunity

Join our forward-thinking team as a Network Security Engineer, where you will play a key role in safeguarding our organisations’ network infrastructure as part of the 24×7 Internal Security Response (ISR) team.

When not involved in incident response and triage activity with the SOC team, you will be responsible for designing, implementing and maintaining robust security solutions to protect against evolving threats. You will collaborate with cross-functional teams, implement changes securely, identify vulnerabilities, manage security incidents, and ensure compliance with industry best practices.

The role will involve optimisation of network security tools to remediate “purple team” highlighted areas identified for improvement, and you will have the opportunity to immerse your time in the standardisation of network tools.

This is a dynamic opportunity to contribute to security initiatives, solve complex challenges, and have a direct impact on the overall resilience of our IT environment.

What We’re Looking For

Essentials

  • Solid understanding of networking principles (TCP/IP, DNS, routing, switching, VLANS and load balancing)
  • Strong expertise in configuring, maintaining and troubleshooting firewalls e.g. Cisco, Checkpoint, Palo Alto
  • Demonstrable hands‑on experience in next‑gen firewalls and advancing security features like IPS/IDS, SSL decryption and deep packet inspection.
  • Proven experience in managing secure proxy solutions (e.g. Bluecoat, F5) and the ability to implement policies for content filtering, SSL inspection and network traffic monitoring.
  • In depth knowledge of security protocols such as IPSec, SSL / TLS, VPNs and two factor authentication.
  • Understanding of network architectures and security zones (DMZ, internal networks).
  • Proficient in monitoring technologies e.g. PRTG, Nagios.

Desirables

  • Understanding of cyber security capabilities and their integrations to networks infrastructure.
  • Existing knowledge of / aptitude to learn Darktrace Antigena and Respond, Splunk ES or Log Rhythm tools.
  • Strong ability to interpret complex information via use of packet capture in order to identify malicious traffic in detail, revealing attacker behaviours like C2, exploitation, lateral movement, or data exfiltration.
  • Proven ability to review SOC alerting in collaboration with SOC analysts to effectively triage and manage Tier 1 SOC alerts to the appropriate outcome.
  • Experience with LDAP, and application traffic flow root cause analysis.
  • Previous experience to identify root cause from (TBC for review – Demonstrable understanding of the OSI Reference Model and the network communication protocols, including but not limited to DNS, HTTP/S, SSL, SMTP, FTP/S, LDAP/S. Demonstrable experience with Security Information Event Monitoring Tools and/or Network Packet Capture tools).

#J-18808-Ljbffr…

Posted: June 21st, 2026