Job Description

RealVNC is the remote access platform for engineers looking for the most reliable and the most secure solution built by the creators of VNC technology. Over the last 25 years, as the inventors of VNC, we've enabled a global workforce to work wherever works and created the remote access market. Our software is used by hundreds of millions of users worldwide including IT professionals from global companies, such as Intel, IBM, NASA, Shell, DreamWorks and Philips.



Our lead product, VNC Connect, allows users to connect securely to a remote device anywhere in the world, see its screen in real-time, and take control as though sitting in front of it. The product has been deployed across a myriad of use cases, from remote support through to deploying the software onto connected devices such as medical ventilators, set-top boxes, heavy industrial machinery and more.



Backed by leading mid-market private equity firm, Livingbridge since 2021, we are investing in our people to support our highly ambitious growth plans. As part of our people strategy to develop our next generation organisation, we are looking to add new team members that are integral to the success of the business, committed to delivering high quality results, collaboration and innovation to help accelerate company growth.

Position:

-------------

We are seeking a highly skilled and motivated Cyber Security Engineer to join our Cyber Security team. This role is crucial in maintaining the security of our systems, networks, and data. The successful candidate will implement security measures, monitor for vulnerabilities, respond to incidents, and ensure compliance with RealVNC policies and industry standards and regulations.



Key responsibilities include;



Security Monitoring and Incident Response:

Serve as a point of contact between the internal security team and our external SOC provider, to continuously monitor systems for security breaches and anomalies. Ensure that alerts, escalations, and incidents from the SOC are reviewed, validated, and appropriately handled internally.


Vulnerability Management and Microsoft Defender Portal analysis:

Administer and optimize Microsoft Defender for Endpoint, Defender for Identity and Defender for Cloud. Liaising with our IT team to ensure log sources from endpoints, Azure/Azure AD, Entra ID, and Microsoft 365 are properly ingested. Develop and maintain KQL queries, analytics rules, threat hunting scripts, and automation logic. Work with internal teams to mitigate threats and implement recommendations - for example MFA enforcement, Conditional Access policies, and identity protection.


Security Architecture and Implementation:

Evaluate and recommend security solutions to enhance internal security posture. Utilising third-party security tools to scan the environments for vulnerabilities, mitigate findings and further harden the infrastructure. Working with the Security Team, IT Team and CIO on the RealVNC cybersecurity roadmap.


Threat Intelligence and Risk Management:

Utilise third-party threat intelligence to identify and mitigate emerging threats and vulnerabilities. Prepare detailed reports and dashboards on security metrics, trends, and incidents using Microsoft Defender. Communicate security status, risks, and issues to senior management and relevant stakeholders.


Reporting and Communication:

Prepare detailed reports and dashboards on security metrics, trends, and incidents using Microsoft Defender. Communicate security status, risks, and issues to senior management and relevant stakeholders. Provide regular updates on the progress of security initiatives and the overall security posture of the organization.

Requirements:

-----------------

You;

Have proficiency in scripting languages (Python ideally), Powershell and Bash and have a keen desire for automation Have a good working knowledge of threat landscapes, including common attack vectors (MITRE ATT&CK) and emerging threats Have a good understanding of EDR tools (Microsoft Defender) and SIEM Tools (Microsoft Sentinel) and the Microsoft Defender Portal Are able to identify, analyse and respond to cybersecurity threats and incidents, liaising with other teams as required Can easily explain complex security concepts to non-technical stakeholders and write clear security reports Work well with a wide-range of stakeholders as part of a cross-functional team, including system administrators, developers, network engineers and information security compliance


We would also like to know about any of the following;



Familiarity with third-party tools such as PurpleKnight, AzureHound/BloodHound Experience coordinating with an external SOC or working in a hybrid detection/response model. Knowledge and understanding of Cyber Security frameworks such as CIS Critical Controls v8 and NIST Cybersecurity Framework Regulatory compliance - knowledge of GDPR, ISO-27001 and SOC2 Knowledge of encryption methods and best practices for protecting sensitive data Are familiar with common Operating Systems - Windows, Linux, MacOS, Android and iOS Previous experience in a security-based role Details of any security-based qualifications

Other information:

----------------------

Benefits

Reporting to the Head of Cyber Security, this role offers a great opportunity to join our Cyber Security Team, working for a successful, growing company with a recognised global brand and huge potential and vision. Working with us on our growth journey provides the chance to see first-hand how your individual contributions as part of a dynamic team influence the success of our business. We also offer generous benefits, including a contributory pension, EV car leasing scheme, private dental and medical cover.



We work in a hybrid environment where employees combine working remotely and working from the office to facilitate a high-performance working environment - with the ability to collaborate effectively and build a cohesive team bond whilst being able to focus and deliver quality results. With this in mind, you will need to easily be able to commute to Cambridge and / or London.

How to Apply

If you'd like to join RealVNC as a Cyber Security Engineer, please click on the 'apply for this job' button and fill in your details.



RealVNC has a responsibility to ensure that all staff are eligible to live and work in the UK and if you're invited to interview you'll be required to provide proof of your eligibility to work.



RealVNC is an equal opportunities employer, committed to staff welfare and professional development.

Staffing and Recruitment Agencies

To all Staffing and Recruiting Agencies: Our website is only intended for individuals and preferred suppliers of RealVNC. Staffing and recruiting agencies and individuals being represented by an agency that is not a preferred supplier are not authorized to use this site or to submit profiles, applications or CVs, or to forward CVs directly to employees or any other company location, and any such submissions will be considered unsolicited.



RealVNC does not accept unsolicited CVs or applications from agencies other than preferred suppliers. RealVNC is not responsible for any fees related to unsolicited CVs or applications and explicitly reserve its right to contact candidates presented in such unsolicited CV or application.