Job Description

A Senior Security Engineer is needed to proactively prevent and resolve all issues relating to accounts, groups, and management of the Active Directory Infrastructure. They will help to protect the group from cyber threats which seek to impact the confidentiality, integrity, and availability of group assets.The domain area is Directory Services and the individual contributor role reports to Senior Manager, Directory Service Security, and has no direct reports.Key relationships & committeesStakeholders include the wider security team including security architecture, cyber strategy business function, governance, risk and compliance, global security operations centre. Programme management. Entity level Business Information Security Officers (BISOs). Infrastructure & Cloud operations, engineering, and architectures teams. Internal risk and audit functions. Architecture and corporate approval forums. External collaborators partners/vendors, regulators, and industry schemes.Location and work patternBengaluru, there will be shift and paid on-call elements to this role.Key responsibilities includeImplementation of technical security initiatives and standards to identify and resolve security vulnerabilities within the active directory infrastructure and Windows operating systems.Remediation and implementation of controls within the estate to protect and secure servers.Audit and Incident resolution on unauthorised changes and File Folder access where forensic analysis will be required using our Automated Security System tool(s).Ensuring standard processes for securing privileged access accounts, security groups and is part of a wider responsibility searching all Windows vulnerabilities within the Active Directory infrastructure.Deliver required outcomes for the security programmes and investments and help to define the delivery outcomes and achievements with the programme/ project teams.Remediate security vulnerabilities found within the Groups Active Directory Infrastructures and any issues found by the Microsoft Tooling set.Remediate discrepancies with various types of AD accounts, investigate via direct contact with users and establish Ownership of all groups.Critical workDelivery of activities against agreed cyber security strategies.Shapes project delivery with the project management team and the senior manager.Delivery of key artefacts associated with the role, artefacts support evidencing and assurance activities.Ongoing control operation and efficiency and evidencing of such.Reporting, development and management of agreed measures, key performance indicators and key risk indicators.Management of services delivered by vendors and partners.ImpactAs a group level function, the role has impact across all parts of the business as it has responsibility for the relevant group security controls to mitigate the risk and impact from cyberattacks. Impacts include financial, economic, regulatory, customer and brand. The role is key to addressing regulatory concerns for all of our regulated entities related to cyber security and cyber resilience.Key Critical MetricsDelivery of projects and BAU activities within agreed timescales to the required standard. Issues that are identified are fixed and remain fixed and are not recurring. Key artefacts for the activities performed exist, are accurate and of required standard. Agreed measures related to controls owned, for example Key critical metrics, are delivered and handled.Technical / job functional knowledgeKnowledge and experience in Active Directory with the level of knowledge in the domain technology area, considered advanced.(5 years minimum) in an Enterprise environment, hierarchy / management group design, deployment, configuration and BAU support.Knowledge of, and experience managing, cloud services such as Azure , M365 (SharePoint and OneDrive).Solid grasp of Windows Server and Active Directory security standard methodologies as applied to both on-prem and Cloud based Active Directory\xe2\x80\x99s. Previous experience securing and Hardening Windows Operating systems is required.Ability to discuss highly technical concepts to all audiences, ranging from technical to executive level decision-makers.Broad technology and security knowledge across non-core domain area. Structured and methodical problem-solving practices for resolving the most sophisticated problems.Needs to be able to work independently with a proactive attitude.Possess a broad skills including solutions design, problem solving and resolution, PowerShell scripting, and excellent documentation authoring skills and experience.Familiar with Service Now and organisational change processes.Solve problems with sound judgement and in a way that is aligned to good practice and in the long-term interests of the organisation.Solid understanding of L1 and L2 CIS standards and of technologies e.g. Service accounts and policies restricting their use through Group membership. Contribute to providing frequent status reports of all implementation tasks and maintain risks and issues for management as and if they arise.Likely to hold or be working towards one or more of the following Windows specific certifications: Microsoft Certified Azure Administrator Associate Microsoft Certified Azure Security Engineer Associate MCSE, MCSALikely to hold or be working towards one or more of the following security or engineering specific certifications, CISSP,GIAC or other relevant qualifications. Remains current with principles, concepts and new technologies related to the role. Business and sector expertiseExperience and knowledge of technology in financial services and/or regulated environments and industry compliance schemes preferred (for example SWIFT) . Must have significant experience of working in security focussed roles. Expected to have direct hands-on experience in some of the domain area technologies.LSEG is a leading global financial markets infrastructure and data provider. Our purpose is driving financial stability, empowering economies and enabling customers to create sustainable growth.Our purpose is the foundation on which our culture is built. Our values of Integrity, Partnership, Excellence and Change underpin our purpose and set the standard for everything we do, every day. They go to the heart of who we are and guide our decision making and everyday actions.Working with us means that you will be part of a dynamic organisation of 25,000 people across 65 countries. However, we will value your individuality and enable you to bring your true self to work so you can help enrich our diverse workforce. You will be part of a collaborative and creative culture where we encourage new ideas and are committed to sustainability across our global business. You will experience the critical role we have in helping to re-engineer the financial ecosystem to support and drive sustainable economic growth. Together, we are aiming to achieve this growth by accelerating the just transition to net zero, enabling growth of the green economy and creating inclusive economic opportunity.LSEG offers a range of tailored benefits and support, including healthcare, retirement planning, paid volunteering days and wellbeing initiatives.We are proud to be an equal opportunities employer. This means that we do not discriminate on the basis of anyone\xe2\x80\x99s race, religion, colour, national origin, gender, sexual orientation, gender identity, gender expression, age, marital status, veteran status, pregnancy or disability, or any other basis protected under applicable law. Conforming with applicable law, we can reasonably accommodate applicants\' and employees\' religious practices and beliefs, as well as mental health or physical disability needs.Please take a moment to read this carefully, as it describes what personal information London Stock Exchange Group (LSEG) (we) may hold about you, what it\xe2\x80\x99s used for, and how it\xe2\x80\x99s obtained, .If you are submitting as a Recruitment Agency Partner, it is essential and your responsibility to ensure that candidates applying to LSEG are aware of this privacy notice.

London Stock Exchange Group