Senior Security Engineer

Job Title: Senior Security Engineer

Salary: £65,000 - £75,000

The Business:

Founded by a team of financial experts and ex-MAT professionals, IMP Software has a deep understanding of the challenges facing multi-academy trusts. Our mission is to empower multi-academy trusts with the tools and expertise they need to manage their finances more efficiently and effectively. That's why we're trusted by trusts across the country to provide the only budgeting, forecasting, and reporting software designed specifically for them. From a standing start, in less than 5 years we are now used by most large trusts to help them deliver smarter MAT Finance.

We're proud to be at the forefront of innovation in the MAT finance sector, and we're constantly looking for ways to improve our offering. We work closely with our customers to understand their requirements so that we can tailor our product to their specific needs, and our team is always available to provide expert advice and support.

But at our core, we're more than just a software company. We're a team of passionate and dedicated professionals, committed to helping multi-academy trusts achieve their financial goals. We believe that financial planning should be simpler, more accessible, and more transparent, and we're proud to be leading the way in supporting smarter MAT finance.

At IMP we are very aware that the success of our business will be directly correlated to the quality of the team that we can attract and more importantly retain! Due to this core belief, IMP offers fantastic career progression within a business that places huge importance on the happiness of the team, through our respectful, fun(!) and supportive culture + flexible working, regular socials and funded/encouraged CPD.

Role Description:

We understand that security breaches can be devastating to a business. This is true both from the perspective of IMP and of our customer MATs. Security works most closely with software delivery teams, data professionals, IT, and operations to provide security guidance and tooling.

IMP seeks to protect itself while fostering collaboration both internally and externally , emphasizing skill transfer and holistic protection of all assets. This approach involves close integration of security engineers with other departments, comprehensive training programs, and the development of common security infrastructure and guidelines to ensure a successful security posture.

This is the first dedicated Security role within IMP. The successful candidate must be comfortable setting managing their own tasks as part of a cross functional team. They will seek to grow with the role, balancing their time between hands on work and broader management of our security posture.

Key responsibilities:

• Partner with leadership to identify and achieve relevant security certifications/accreditation.
• Partner with leadership to define security level SLA/SLO.
• Identify and assess the company for relevant regulatory compliance.
• Maintain up to date knowledge of security threats and practices, advising the business.
• Coach delivery squads on security fundamentals and best practice.
• Ensure security awareness training is delivered to the wider business.
• Engage with the security community to keep abreast of developing trends.
• Monitor and respond to network risks and breaches using tools such as IPS/IDS
• Detect, analyse, and respond to security threats before they harm business operations.
• Monitor systems for real-time threat intelligence, using tools such as security dashboards
• Develop and run security incident procedures
• Develop our Microsoft Entra ID and RBAC setup for maintainability and security.
• Oversee our Office365, and endpoint security posture in partnership with our MSP.
• Partner with the DPO to manage our data protection stance through technology and process.
• Evaluate the security of our applications, making use of tools AppSec tools such as SASD
• Partner with external penetration test partners to explore and report on vulnerabilities.
• Partner with DevOps specialists to deliver IaC configurations, using yml and powershell.
• Management of Azure SQL firewall and other access controls
• Advise our software development squads on access control in our software.
• Partner with delivery squads during the left-shifted release planning phase.
• Report on security awareness metrics such as the number of attacks and breaches.
• Develop and report on risk-based security metrics.

Skills, experience, and attributes:

Required

Azure Security: Microsoft Defender for Cloud, Microsoft Entra ID, Azure DDoS, Key Vault, Azure Information Protection

Desirable

Microsoft Sentinel
Powershell, C#, Azure Graph, git, AZ-500: Azure Security Engineer Associate

Benefits:

• 27 days of holiday per year plus bank holidays
• AXA Health insurance including dental and mental health
• Broadband allowance
• Home office stipend
• Life assurance (4 x basic salary)
• Encouraged and funded CPD