Junior Security Engineer

Hong Kong Exchanges And Clearing

Job Location:

London - UK

Monthly Salary: Not Disclosed

Posted on: 3 days ago

Vacancies: 1 Vacancy

Job Summary

Junior Security Engineer

Shift Pattern:

Standard 40 Hour Week (United Kingdom)

Scheduled Weekly Hours:

Corporate Grade:

F - Officer

Reporting Line:

(UK Division) Information Technology

Location:

UK-London

Worker Type:

Permanent

Overall Purpose of Role

This role is an entry-level position within the Information Security team at the London Metal Exchange (LME). This role supports the secure delivery and operation of infrastructure and applications identity and access management (IAM) and secure configuration management with a strong focus on automation across each discipline.

The successful candidate will work closely with IT Engineering Security Operations and Infrastructure teams to ensure that security controls are effectively implemented and maintained across LMEs platforms. This is a hands-on role ideal for early-career professionals with a strong interest in security engineering DevOps practices and technology aspects of IAM.

Key Responsibilities:

Security Engineering & Automation

Assist in the deployment and maintenance of security tools and platforms (e.g. E-Mail Security DLP SIEM Endpoint Protection).
Develop and support the automation of security tools configuration and updates using scripting (e.g. Python PowerShell Bash NPM).
Contribute to Infrastructure as Code (IaC) efforts using Terraform or Ansible.
Help monitor and maintain secure configurations across Windows Linux and kubernetes environments.

Identity & Access Security

Assist in implementing role-based access controls (RBAC) and least privilege principles in code.
Help automate IAM workflows and integrate identity controls into CI/CD pipelines.
Support the implementation of access controls and enforcement of least privilege across platforms and services.
Help automate access governance workflows and integrate identity-related controls into development and operational pipelines.
Assist in access reviews and the secure onboarding/offboarding of users and systems.

DevOps Integration

Contribute to the integration of security controls into CI/CD pipelines (e.g. SAST DAST secrets management).
Collaborate with engineering teams to embed security into build and deployment processes.
Participate in the development of secure scalable and resilient infrastructure solutions.

Operational Support

Provide support for incident response and troubleshooting related to security tooling and access controls.
Provide support for Red/Blue team testing and penetration testing.
Help maintain documentation standards and procedures related to security engineering and platform protection.
Participate in on-call and weekend support rotations as needed.

Qualifications Required:

A University degree or equivalent qualifications in a STEM subject such as Computer Science or Engineering and/or Information Systems.
Desirable: Entry-level certifications such as CompTIA Security Microsoft SC-900 or AWS Cloud Practitioner.

Required Knowledge and Experience:

Up to 2 years of experience in IT security engineering or DevOps (internships or academic projects included).
Basic understanding of:
- IAM concepts and tools (e.g. LDAP oAuth IdP).
- Networking and security protocols (TCP/IP HTTPS DNS Firewalls Proxy).
- Operating systems (Windows Linux/Unix Kubernetes).
- Scripting or programming (Python Bash PowerShell).
- CI/CD tools and cloud platforms (e.g. Ansible Tower Bitbucket Hashicorp Vault Pipelines AWS Azure)
- Security Tooling (e.g. EDR SIEM Antivirus)

Personal Qualities:

Curiosity about emerging threats and technologies
Ability to assess and prioritize tasks/risks
Attention to detail
Enthusiastic about security engineering and automation.
Strong analytical and problem-solving skills.
Effective communicator with good documentation habits.
Team-oriented proactive and adaptable in a fast-paced environment.
Willingness to learn and grow within a critical infrastructure environment.
Commitment to continuous learning

The LME is committed to creating a diverse environment and is proud to be an equal opportunity employer. In recruiting for our teams we welcome the unique contributions that you can bring in terms of education ethnicity race sex gender identity expression and reassignment nation of origin age languages spoken colour religion disability sexual orientation and doing so we want every LME employee to feel our commitment to showing respect for all and encouraging open collaboration and communication.

Required Experience:

Junior IC

Junior Security EngineerShift Pattern:Standard 40 Hour Week (United Kingdom)Scheduled Weekly Hours:40Corporate Grade:F - OfficerReporting Line:(UK Division) Information TechnologyLocation:UK-LondonWorker Type:PermanentOverall Purpose of RoleThis role is an entry-level position within the Information...

Junior Security Engineer

Shift Pattern:

Standard 40 Hour Week (United Kingdom)

Scheduled Weekly Hours:

Corporate Grade:

F - Officer

Reporting Line:

(UK Division) Information Technology

Location:

UK-London

Worker Type:

Permanent

Overall Purpose of Role

Key Responsibilities:

Security Engineering & Automation

Assist in the deployment and maintenance of security tools and platforms (e.g. E-Mail Security DLP SIEM Endpoint Protection).
Develop and support the automation of security tools configuration and updates using scripting (e.g. Python PowerShell Bash NPM).
Contribute to Infrastructure as Code (IaC) efforts using Terraform or Ansible.
Help monitor and maintain secure configurations across Windows Linux and kubernetes environments.

Identity & Access Security

Assist in implementing role-based access controls (RBAC) and least privilege principles in code.
Help automate IAM workflows and integrate identity controls into CI/CD pipelines.
Support the implementation of access controls and enforcement of least privilege across platforms and services.
Help automate access governance workflows and integrate identity-related controls into development and operational pipelines.
Assist in access reviews and the secure onboarding/offboarding of users and systems.

DevOps Integration

Contribute to the integration of security controls into CI/CD pipelines (e.g. SAST DAST secrets management).
Collaborate with engineering teams to embed security into build and deployment processes.
Participate in the development of secure scalable and resilient infrastructure solutions.

Operational Support

Provide support for incident response and troubleshooting related to security tooling and access controls.
Provide support for Red/Blue team testing and penetration testing.
Help maintain documentation standards and procedures related to security engineering and platform protection.
Participate in on-call and weekend support rotations as needed.

Qualifications Required:

A University degree or equivalent qualifications in a STEM subject such as Computer Science or Engineering and/or Information Systems.
Desirable: Entry-level certifications such as CompTIA Security Microsoft SC-900 or AWS Cloud Practitioner.

Required Knowledge and Experience:

Up to 2 years of experience in IT security engineering or DevOps (internships or academic projects included).
Basic understanding of:
- IAM concepts and tools (e.g. LDAP oAuth IdP).
- Networking and security protocols (TCP/IP HTTPS DNS Firewalls Proxy).
- Operating systems (Windows Linux/Unix Kubernetes).
- Scripting or programming (Python Bash PowerShell).
- CI/CD tools and cloud platforms (e.g. Ansible Tower Bitbucket Hashicorp Vault Pipelines AWS Azure)
- Security Tooling (e.g. EDR SIEM Antivirus)

Personal Qualities: