Job Description

As a junior security engineer at Trooli, you will get the chance to experience a variety of work within a rapidly growing security function as part of an organisation pioneering connectivity solutions for communities left behind by the bigger players.

We’ve come a long way in 3 years, from nothing to 70,000+ premises passed, 10 staff to over 180 and we’re proud to say we’re now one of the most respected altnets in the industry. And that’s just the start. We’re expecting to cover 500 thousand houses by 2023 and 1 million by 2024, bringing swathes of the country into the full-fibre future they deserve. But it’s not just our network; we’re passionate about ensuring our employees grow with us too.

Job Responsibilities

• Engineer and implement security measures for the protection of computer systems, networks, and information
• Provide subject matter expertise on the implementation and architecture of new network developments, ensuring the correct security controls are deployed
• Monitor security controls across the organisation - including firewalls, IDS/IPS, network access control and vulnerability management tools
• Perform periodic penetration testing of systems
• Develop technical solutions to help mitigate vulnerabilities and assist in the automation of repetitive processes
• Maintain a record of standard operating procedures and protocols
• Assist with providing company-wide training on information security, catering to the different requirements of departments throughout the company
• Produce reports that include assessment-based findings, outcomes, and recommendations for further improving system security

Educational Requirements

We understand that routes into the industry are diverse, so would encourage you to apply even if you have no formal training

Experience Requirements

• Have great communication skills and can explain technical issues clearly to non-technical personnel
• Understand modern threat actors, and how they operate
• Have knowledge of virtualisation both on premises and in the cloud
• Have knowledge of security compliance frameworks, like ISO, NIST and CIS
• Have an understanding of risk management

Desired skills

• Have a deep interest in networking and infrastructure
• Already have any certifications like CompTIA Security+, GIAC GSEC/GCIH or SSCP
• Have good programming skills in Python, C, Go or any other popular language
• Have a practical understanding of how data is protected at rest and in transit, including TLS, PKI and key management
• Are familiar with security tooling like Nessus or Nexpose