Business Unit: Technology Operations & Cyber Security
Salary Range: £40,800 - £51,000 per annum DOE
Location: Hybrid - With occasional travel required to the Virgin Money Glasgow Hub. 
Contract type: Permanent - Full Time  

Our Team  

The Security Engineering team is part of Technical Operations and Cyber Security within Virgin Money and we maintain the Bank’s Security tools & applications. Our aim of Security Engineering is to cultivate unwavering trust in our products and services by engineering resilient security solutions that protect our users and customers from evolving threats. We strive to be the invisible shield, working tirelessly to ensure their data and digital experiences remain safe, secure, and uninterrupted. By joining our team, you will become a vital part of this mission, contributing your unique skills and perspectives to building a safer digital future. 

What you’ll be doing 

• Proactively use security engineering tools to identify and mitigate network & security risks based on an in-depth understanding of network protocols and vulnerabilities.
• Develop and implement security measures using specialised tools based on Cyber security best practices.
• Working alongside project teams and other stakeholders to ensure solutions meet the strategic needs of Virgin Money.
• Helping to design, roll out and manage on-going Cyber & Network Security technologies.
• Support and build network segmentation capabilities, including deciding on the granularities of segmentation from a threat-led perspective (e.g., application level, environment level, network level, network policies, mapping attack paths, and building mitigations).
• Contribute significantly to team culture and the ongoing evolution of security engineering practices.
• Implement automation to remove repetitive manual tasks. 

We need you to have 

• Hands-on exposure and knowledge of Cyber & network security, e.g. management of firewalls, IDS, Web Gateways etc.
• Familiarity with deploying Infrastructure as Code and using CI/CD technologies, such as Azure DevOps.
• Hands-on experience working with cloud networking (with a focus on security). For example, working with virtual networks, network security groups, virtual firewalling, Web Application Firewalls, and cloud networking security monitoring.
• Previous experience working with security best practices – e.g. Zero trust, defence in depth, least privilege, security hardening.
• Experience in applying zero-trust principles to secure large-scale IT infrastructures, demonstrated by successful deployments within a corporate setting. 

It’s a bonus if you have but not essential 

• Experience as a Cyber Security Engineer, Cyber Security Analyst, or a Network Engineer with an interest in becoming a Cyber Security Engineer.
• Experience with Terraform, Python, Javascript/Node.js, PowerShell or Bash
• Knowledge of infrastructure and application monitoring, such as Icinga or Elastic Stack.
• Network Security certifications (especially Cloud centric) would be advantageous.
• Proven ability to design and deploy zero-trust security solutions, including identity and access management, micro segmentation, and continuous authentication, in complex organisational structures would be an advantage.  

Be yourself at Virgin Money

At Virgin Money, we celebrate everyone. We have fun, think big, and relentlessly include each other, all in pursuit of our purpose: Banking – but fairer, more rewarding, and for the good of society.  We’re committed to creating an inclusive culture where colleagues feel safe and inspired to contribute, speak up and be heard.   

As a Disability Confident Leader, we're committed to removing any obstacles to inclusion.  If you need any reasonable adjustments or support making your application, contact our Talent Acquisition team careers@virginmoney.com

If we receive a high volume of eligible applications, we may need to prioritise candidates whose skills and experience most closely align with the role, while still ensuring fair and equitable consideration for all applicants.

Points to Note:  It’s a good idea to let your current people leader know if you are going to apply for an internal role, so they can support your application, we always recommend you share your plans with them. If you’re interested in this opportunity, we recommend that you get in touch with ben.coates@virginmoney.com who’ll be able to tell you all about the role which will help you make a great application.

Now the legal bit

Please note that some of our legacy contracts are non-flexible therefore, if you move to a new role or make a change to your existing terms, you’ll move onto our standard flexible contract, 8am - 8pm.

If you successfully secure a new role, the salary and notice period you'll be offered will be in line with our reward and policy guidance. Not sure what this would mean for you, and want to know more? Contact Talent Acquisition, careers@virginmoney.com or feel free to start a conversation with HaRi our new HR Virtual Agent on MS Teams to help with your questions.