Job Title: Security Operations - Network Engineer
Corporate Grade: AVP
Primary Location: Fleet (Hampshire)
Reports to (Line Manager's Job Title): Technology Partner
Business Area: Barclaycard Business Solutions (BBS)
Department/Function Level 1: Consumer Payments
Department/Function Level 2: Payments Technology Tower
About Barclaycard Business Solutions
Barclaycard Business Solutions is a portfolio of B2B2C (business to business to consumer) businesses including merchant acquiring, commercial payments, offers and point-of-sale (POS) finance.
Making our clients more successful is at the heart of what we do. We are unique. We are the only business in the UK which can make and take payments, putting us in a unique position to offer a broader choice of payment solutions and products to our B2B customers.
Our focus is on making clients more successful by allowing them to always make the sale, help them pay and to help them to promote and sell.
About Payments Tower
The primary function for the Payments Technology Tower is to support the Global Payments Acceptance business and in doing so running payment transactions for 30% of the UK high street, adding business value by leveraging technology solutions and payments domain/industry knowledge. The tower also operates across Barclaycard and the wider bank providing payment solutions where the other business units are acting as a merchant or in the operation of authorisations and settlement routing.
We are an equal opportunity employer and we are opposed to discrimination on any grounds.
Overall purpose of role
The Security Operations Engineer will be part of Technical Operations, Security Operations Team, part of the overall Service Operations department.
Primary focus will be on ensuring the Windows based infrastructure is secure, robust, resilient and compliant to PCI standards.
The focus of Security Operations is in maintaining The Logic Group's PCI Kpi's and ensuring the infrastructure remains secure at all times.
This activity will include:
Perform security incident analysis and remediation steps
Analysing and Remediating CISCO advisories
Identifying and implementing improvements to security within the infrastructure
Planning network device firmware upgrades
Supporting annual security audits
Supporting annual security gap analysis
PCI standard evidence collation
Maintaining security tools
In addition to these tasks Security Operations will work closely with Technical Architecture as a point of support for security design, architecture compliance, threat and vulnerability management and penetration testing. Security Operations will also own developing and maintaining supporting documentation, you will be required to assist in deploying automation of operational processes and procedures, identify weaknesses, propose, plan and deploy improvements to address and enhance the infrastructure design.
Adhere to the Change Management process, including presenting change requests with sufficient clarity to allow the appropriate authority to understand the reason for the change, the associated risk, the ease of regression and the implications of making or not making the change.
Risk and Control Objective: All Barclays colleagues have to ensure that all activities and duties are carried out in full compliance with regulatory requirements, Enterprise Wide Risk Management Framework and internal Barclays Policies and Policy Standards
A proven track record of maintaining security to critical systems in a 24 x 7 managed services/data centre environment working with relevant technologies and within an ITIL framework.
Knowledge of IT Security principles, techniques and technologies
Understanding the technical aspects of the Information Security
Relevant on the job networking experience.
Demonstrable knowledge of network concepts, IP Addressing/sub-netting, the OSI model, Firewalls, Router and Switches.
Relevant industry understanding, in particular operating in a PCI compliant environment.
Dedicated willingness to learn and the ability to continuously improve processes/documentation.
Experience supporting LAN/WAN technologies including, MPLS, X25, Ethernet, PSTN, ISDN, ADSL. Leased Lines.
Experience in the following network technologies - Cisco ACS, DNS, SSL, TCP/IP, NAT, IPsec, QoS, packet capture and analysis.
troubleshooting skills with network protocols such as: IP, ICMP, TCP, UDP, DHCP, HSRP, IEEE 802.1X.
Firewall support, SPI, IPS/IDS, ACLs, IPsec.
Implementation and support of network management systems, including support of SNMP, Netflow, Syslog.
Physical cabling & patching experience.
There will be a requirement for the job holder to carry out of hours activity as directed.
The individual needs a full UK driving licence and to have their own car.
There may be the need for occasional UK and overseas travel.
One or more of following security qualifications is preferred but not essential:
GIAC: Global Information Assurance Certification.
GCIH: GIAC Certified Incident Handler.
SIEM: Security information and event management.
PCIP: PCI Professional.
As part of this role you may be required to work outside of normal office hours including weekends, this could be in The Logic Group premises in Fleet or in various data centre environments.
All technical operations engineers are required take part in out of hours support via an on call rota.