Infrastructure Security Engineer

The Infrastructure Security Engineer is responsible for supporting and enhancing the firm's securityposture across infrastructure, endpoints, identity, and cloud services. The role focuses on the day-to-daymanagement of security platforms, monitoring and responding to threats, and ensuring security controlsare effectively implemented across the estate.This is a mid-level position, working closely with the Senior Infrastructure Engineer to embed security bestpractices into infrastructure operations, while collaborating with external partners to deliver an effectivesecurity service., Security Operations & Tooling

• Administer, maintain, and optimise security platforms including Darktrace, CrowdStrike, Pentera,
Microsoft 365 Security (Including Purview), Mimecast and Fortra (CASB/SASE).
• Monitor and triage security alerts and resolve or escalate as required.
• Assist in tuning detection rules to improve alert quality and reduce noise.
Endpoint, Identity & Device Security
• Support security configuration across Active Directory, Entra ID and Entra MFA.
• Support Intune compliance and configuration.
• Maintain mobile security using Lookout for iOS fleet.
• Support Jamf for Apple device data monitoring and security enforcement.
Threat Management & Incident Response
• Act as key contact for the XDR provider (Reliance Cyber).
• Support investigation and coordination of security incidents.
• Assist with root cause analysis and remediation activities, Contribute to infrastructure changes ensuring security requirements are met
Compliance, Risk & Governance
• Support audits and security reviews.
• Assist in aligning systems with policies and regulatory requirements.
• Contribute to identifying and mitigating risks.
Documentation & Continuous Improvement
• Maintain documentation of systems and processes.
• Suggest improvements to tools and processes.
• Stay up to date with threats and best practices.
Collaboration & Communication
• Work closely with IT teams to support secure operations.
• Communicate risks and recommendations clearly.
• Promote security awareness across the firm., in an agile way - we do not monitor attendance but ask that everyone spends more time in the office than
out of it, typically three days a week for full time staff.Our firm values, which we very much "live", are Ambition, Bravery, Curiosity and Friendliness. Theseunderpin all that we do across both our client work and our internal strategic decision making. None of ourlawyers have billing targets which means we can focus on doing the best for our clients while also havingthe time and capacity to assist each other in a genuinely collaborative working culture.Training & career progressionWe aim to have a coaching culture with regular informal feedback to supplement the formal appraisalprocess. Mentoring schemes are available for fee earners while members of the HR team can providepersonal coaching and guidance in non-legal and personal management skills.Personal and professional development is much valued at all levels so we have a generous budget whichenables us to meet most ad hoc requests for additional training.Reward & benefitsOur salary and bonus structure reflects our absence of billing targets and collaborative culture and anybonus is paid as a simple percentage bonus across the whole firm. We have a flexible benefits packagethat is kept under regular review and is designed with the wellbeing of our staff and their families.Diversity & inclusionAt Bristows we are committed to championing equality, diversity and inclusion for all, and we are a proudsignatory of the Law Society's Diversity and Inclusion Charter. As a firm, and as individuals, we do all wecan to treat people fairly and with mutual respect. This commitment enriches our work and our workinglives and has played a key part in our success over the years.We have an active, partner-led Diversity & Inclusion group which runs awareness raising and educationalinitiatives in addition to ensuring that our policies and procedures remain inclusive.

Technical Skills
• Experience with EDR/XDR platforms
• Microsoft 365 Security, Entra ID, Intune and MFA
• Understanding of CASB/SASE platforms (e.g. Fortra)
• Email security tools such as Mimecast
• Mobile/device security tools including Intune, Lookout and Jamf (monitoring)
• Infrastructure knowledge across servers, networking and Azure
Experience
• Experience in infrastructure or security-focused IT role
• Experience with managed security providers or SOC/XDR services
• Exposure to monitoring and incident response
Our values & cultureWith around 300 staff and partners in total and one UK location, we are able to maintain a friendlyatmosphere where everyone is able to get to know each other and many policies and practices canoperate on a trust basis.We are based in modern offices at Blackfriars and very much value face to face collaboration and the socialelement of working relationships. We have introduced a Remote Working Policy which enables staff to work

Bristows is a market leading law firm with a global client base across the life sciences and technology sectors. The firm has maintained its high standing in the market with the strength of our legal expertise and our unique firm culture driven by our core values.