Lead Security Engineer

The Directory Services Security Team (DSST) who are tasked with identifying and resolving all security vulnerabilities within the Active Directory (AD) infrastructure and looking for an experienced team leader! The role involves both technical and people leader responsibilities. You will need to have a good understanding of the technologies used for the implementation of a number of technical security initiatives and standards. You will have excellent overall AD knowledge and be proficient in PowerShell and Excel to create reports and relevant metrics.

You'll be remediating and implementing controls within the estate to lockdown and secure any vulnerable devices. It is a highly focused, security centric role, looking at the standard methodologies for securing our privileged access accounts, security groups, servers and Domain Controllers within a wider project for remediation of the AD estate. You will also be responsible for taking ownership for Audit queries and Audit control points that relate to the team.

•  Management of the overall team including: approving timesheets, leave, performance management, change requests, customer concerns, incidents, critical issue management
• Responding to ad-hoc initiatives and requests from additional workstreams
• Updating all relevant documentation and in related information repositories
• Liaise with divisions and departmental heads to both discover and detail all the processes, actions and outcomes required
• Remediation of vulnerabilities found on servers and the estate
• Reviewing audit findings and supply responses
• Update management dashboards
• Provide technical guidance with any of the workstreams that we partner with
•  Be involved in solutions design, problem solving and resolution, with PowerShell scripting and documentation.

• Be a technical resource prepared to offer assistance to any of the in-flight workstreams
• Attend project meetings, standups and represent the Senior Manager
• Keep the team dashboards up to date and ensure progress reports are available via collaboration with PowerBI/ CNX delivery teams
• Recommend alterations to designs that improve quality of systems and/or procedures
• Adhere to and help craft policies and procedures, as well as implement appropriate controls and compliance monitoring to effectively deliver and safeguard information assets.
• Provide frequent status reports of all implementation tasks and maintain risks and issues for management as and if they arise.
• Ensure changes are correctly impact assessed and implemented and are represented at relevant boards
• Assist with all Security related project work as well as BAU tasks as required
• Assist in the delivery of implementations, some of which will be at weekends or unsociable hours. and provide full aftercare assistance for all DSST remediation implementations
• Give technical support and guidance for all security implementations and new standards and procedures to the team and colleagues
• Implement changes and support Active Directory and associated services
• Help to orchestrate efforts to enforce to new and existing Security standards across LSEG

• Minimum of 7 years of Active Directory knowledge including hierarchy / management group design, deployment, configuration and BAU support.
• Experience with all aspects of AD user and group Management
• Must be confident to collaborate closely with service line owners and customers
• Experience working in an Enterprise environment with strong change control practices
• Self- starter who takes initiative
• Able to use AD tools to a sophisticated level
• Familiar with Service Now and organisational change processes
• Communicate effectively, particularly with issues that are more sophisticated with other customers and teams, referring when vital.
• Use developed communication skills so others can understand, with the ability to recognise when to refer issues appropriately.
• Proactively prioritise knowledge transfer sessions to enable team members to demonstrate the functionality of all new implementations within the Windows Security environment.

• Solid grasp of Windows Server Technologies e.g. Service accounts and policies restricting their use through Group membership and GPO
• Proven management experience, leading shifts and teams
• Excellent verbal and document authoring skills
• PowerBI & PowerApps/ CNX /Splunk
• Knowledge of PAM products such as Beyond Trust/ CyberArk/
• Advanced Excel

• Maintain proficiency as a Windows Security Architect with Active Directory Systems Speciality
• Ability to develop, test, execute and document solutions to a very high standard.
• Excellent investigation and troubleshooting skills of complex issues and ability to locate application owners and liaise effectively with them.
• Motivated self-starter who can work independently as well as part of a team.
• High level of accuracy and attention to detail.
• Able to take direction from others when needed and not afraid to ask for help.
• Ability to learn new concepts and products with ease.
• Ability to think quickly and decisively and look for alternative solutions in challenging situations.
• Ability to produce clear and accurate technical documentation and train/hand-off design and implementation work.
• Ability to work to tight timescales and meet challenging deadlines.
• Ability to report in a formal and structured method.

• Demonstrate energy and drive in getting things done.
• Evaluate the quality of the service(s) we provide and always try to do better.
• Committed to personal development and learning for themselves and for their team.
• Show insight into their own behaviour and the behaviours of others.
• Understand how to embed change so that improvements are sustainable and consistent.
• Contribute to presenting the vision, goals, successes, and lessons learned to their colleagues and team members

People are at the heart of what we do and drive the success of our business. Our colleagues thrive personally and professionally through our shared values of Integrity, Partnership, Innovation and Excellence are at the core of our culture. We embrace diversity and actively seek to attract people with unique backgrounds and perspectives. We are always looking at ways to become more agile, so we meet the needs of our teams and customers. We believe that an inclusive collaborative workplace is pivotal to our success and supports the potential and growth of all colleagues at LSEG

LSEG is a leading global financial markets infrastructure and data provider. Our purpose is driving financial stability, empowering economies and enabling customers to create sustainable growth.

Our purpose is the foundation on which our culture is built. Our values of Integrity, Partnership, Excellence and Change underpin our purpose and set the standard for everything we do, every day. They go to the heart of who we are and guide our decision making and everyday actions.

Working with us means that you will be part of a dynamic organisation of 25,000 people across 65 countries. However, we will value your individuality and enable you to bring your true self to work so you can help enrich our diverse workforce. You will be part of a collaborative and creative culture where we encourage new ideas and are committed to sustainability across our global business. You will experience the critical role we have in helping to re-engineer the financial ecosystem to support and drive sustainable economic growth. Together, we are aiming to achieve this growth by accelerating the just transition to net zero, enabling growth of the green economy and creating inclusive economic opportunity.

LSEG offers a range of tailored benefits and support, including healthcare, retirement planning, paid volunteering days and wellbeing initiatives.

We are proud to be an equal opportunities employer. This means that we do not discriminate on the basis of anyone’s race, religion, colour, national origin, gender, sexual orientation, gender identity, gender expression, age, marital status, veteran status, pregnancy or disability, or any other basis protected under applicable law. Conforming with applicable law, we can reasonably accommodate applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs.

Please take a moment to read this privacy notice carefully, as it describes what personal information London Stock Exchange Group (LSEG) (we) may hold about you, what it’s used for, and how it’s obtained, your rights and how to contact us as a data subject.

If you are submitting as a Recruitment Agency Partner, it is essential and your responsibility to ensure that candidates applying to LSEG are aware of this privacy notice.