Security Engineer

Working within the Directory Services Security Team (DSST) we are looking for a Security Engineer to proactively prevent and resolve all issues relating to accounts, groups, and management of the Active Directory Infrastructure. This role protects the group from cyber threats which seek to impact the confidentiality, integrity, and availability of group assets.

The team proactively prevents and resolves all issues with administrative accounts and security groups used to assign access. This allows identification via our IAM tool for recertification purposes. The team manages audit findings from both internal and external parties, providing proof of controls where required and then works to implement Controls to meet audit requirements. They collaborate with other LSEG IT and infrastructure teams to help with the solutioning and remediation of any security vulnerabilities found in these areas. They act as gatekeepers to the AD estate and its privileged accounts and groups ensuring that all controls are in place for the in-scope AD Domains

The ideal candidate will have a good understanding of the technologies used for the implementation of a number of technical security initiatives and standards in order to identify and resolve security vulnerabilities within the LSEG AD both on prem and also Entra ID. You should have excellent overall AD knowledge in both environments and be able to use PowerShell and Excel to an average level to build reports. They will possess broad abilities including solutions design, problem solving and resolution, and an excellent communicator.

• Be a technical resource prepared to offer assistance to any of the in-flight workstreams
• Keep the DSST OSM Dashboard up to date and chase for appropriate ticket updating and closure
• Be familiar with ITSM Service Now and Change management processes
• Recommend alterations to development and design that improve quality of systems and/or procedures
• Adhere to and help shape policies and procedures, as well as implement appropriate controls and compliance monitoring to effectively deliver and safeguard information assets.
• Contribute to providing frequent status reports of all implementation tasks and maintain risks and issues for management as and if they arise.
• Ensure changes are correctly impact assessed and implemented and are represented at Change Approval Boards.
• Assist with all Security related project work as well as BAU tasks as advised by Manager
• Assist in the delivery of all security initiatives and implementations some of which will be at weekends or unsociable hours. and provide aftercare assistance for all Admin and security group remediation implementations
• Implement existing standards and processes.
• Implement changes to and support Active Directory and associated services
• Help to promote any new Security standards and procedures to be implemented group wide.

• Remediation of any vulnerabilities found on servers and on prem AD infrastructure.
• Worked with a PAM product such as Beyond Trust
• Advanced Excel skills
• Responding to ad-hoc security measures and additional workstreams
• Updating all DSST documentation and related confluence sites etc
• Liaise with business owners and departmental heads so that we can both discover and document all the above and their status
• Update PowerBI dashboards and be prepared to outline solution and rationale to senior team members.
• To help technically with any of the workstreams that we are involved in.

• Very good Active Directory Knowledge (8 years minimum) in an Enterprise environment – Hierarchy / management group design, deployment, configuration and BAU support.
• Experience with all aspects of AD user and group Management
• Must be excellent liaising with Service line owners and customers
• Good document authoring skills
• Experience working in an enterprise environment with strong change control practices
• In-depth knowledge of Windows Server Technologies e.g. Service accounts and policies restricting their use through Group membership and GPO

• PowerBI and PowerApps.
• Experience working with Service Now (OSM) as the primary ITSM tool
• Expertise in PAM product such as Beyond Trust
• Knowledge of advanced Excel using Pivot tables etc

We recognise that to attract the best talent, we need to be flexible, and we are open to discussing work arrangements with you. We take hybrid approach to workplace; this role is hybrid/ digital first. As a global business, we rely on diversity of culture and thought to deliver on our goals.

People are at the heart of what we do and drive the success of our business. Our colleagues thrive personally and professionally through our shared values of Integrity, Partnership, Innovation and Excellence are at the core of our culture. We embrace diversity and actively seek to attract people with unique backgrounds and perspectives. We are always looking at ways to become more agile, so we meet the needs of our teams and customers. We believe that an inclusive collaborative workplace is pivotal to our success and supports the potential and growth of all colleagues at LSEG.

LSEG is a leading global financial markets infrastructure and data provider. Our purpose is driving financial stability, empowering economies and enabling customers to create sustainable growth.

Our purpose is the foundation on which our culture is built. Our values of Integrity, Partnership, Excellence and Change underpin our purpose and set the standard for everything we do, every day. They go to the heart of who we are and guide our decision making and everyday actions.

Working with us means that you will be part of a dynamic organisation of 25,000 people across 65 countries. However, we will value your individuality and enable you to bring your true self to work so you can help enrich our diverse workforce. You will be part of a collaborative and creative culture where we encourage new ideas and are committed to sustainability across our global business. You will experience the critical role we have in helping to re-engineer the financial ecosystem to support and drive sustainable economic growth. Together, we are aiming to achieve this growth by accelerating the just transition to net zero, enabling growth of the green economy and creating inclusive economic opportunity.

LSEG offers a range of tailored benefits and support, including healthcare, retirement planning, paid volunteering days and wellbeing initiatives.

We are proud to be an equal opportunities employer. This means that we do not discriminate on the basis of anyone’s race, religion, colour, national origin, gender, sexual orientation, gender identity, gender expression, age, marital status, veteran status, pregnancy or disability, or any other basis protected under applicable law. Conforming with applicable law, we can reasonably accommodate applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs.

Please take a moment to read this privacy notice carefully, as it describes what personal information London Stock Exchange Group (LSEG) (we) may hold about you, what it’s used for, and how it’s obtained, your rights and how to contact us as a data subject.

If you are submitting as a Recruitment Agency Partner, it is essential and your responsibility to ensure that candidates applying to LSEG are aware of this privacy notice.