Information Security Engineer jobs at Nice in United Kingdom, London

Working as part of the engineering team you will participate in all testing activities for the ContactEngine platform. This will include functional and non-functional testing using a combination of manual and automated testing with a focus on, and continual drive towards automation.

How will you make an impact?

• Participate in all testing activities within the agile pipeline – estimation, prioritisation, planning and coordination.
• Provide input into platform architecture and implementation of automation tooling and frameworks to facilitate testing, continuous integration, delivery, and deployment.
• Create and execute detailed, comprehensive, and well-structured test plans and test cases that will include both functional and non-functional tests.
• Support the investigation of bugs and live production issues.
• Recreate and verify defects with detailed replication steps, working with the engineering team to ensure efficient resolution.
• Perform thorough regression testing prior to releasing and as and when any bugs are resolved.
• Develop and maintain automated test suites across staging and production environments.
• Creation and maintenance of test data.
• Stay up to date with new testing tools and test strategies.

Have you got what it takes?

• Must have experience in Javascript/Typescript.
• Proven experience in a similar testing role within software development with at least 3+ years of experience.
• Hands-on experience with automated testing of .NET applications and services in a cloud environment with a good understanding of test automation design patterns, practices, tools, and frameworks e.g. BDD, Gherkin/SpecFlow/Jasmine, Selenium, Protractor, Playwright etc. Writing tests using JavaScript, TypeScript etc.
• Experience in creating clear, concise, and comprehensive test plans and scripts, test execution and reporting of the results.
• Practical experience in software testing (planning and execution, manual and automated) across the application landscape e.g. UI, business logic, data access, web services/APIs.
• Sound understanding of different types of tests, their value, and where they fit into the software development lifecycle.
• Experience with cross browser and non-functional testing strategies and tools.

You will have an advantage if you also have:

• Experience working in an Agile/Scrum environment.
• ISEB/ISTQB qualified.
• Experience working in an ISO 27001 controlled environment where data security is paramount.
• Experience using BrowserStack or other third-party selenium grids.
• Knowledge of Git, TeamCity and Octopus Deploy.
• Experience with performance testing and tools.
• Knowledge of SQL.

Reporting into: Manager, Engineering CX.

Role Type: Individual Contributor.

As an Implementation Engineer, you will work on projects that are critical to our Client's success. Our implementation engineers are versatile leaders that enthusiastically take on new challenges as we continually push our technology forward.
Working within the implementation team you will be at the heart of all activity. In consultation with the Customer Success team, Product development, and AI innovation teams you will help design and implement the business and technical requirements of ContactEngine deployments for Market Trials and Production releases.

• Become an expert in ContactEngine solution design consultancy and implementation
• Learn Client’s business processes to define and document requirements for automated transactions of proactive customer journeys
• Document End to End Application Integration Specifications
• Configure, perform E2E testing, debug and deploy the SaaS platform based on client requirements
• Define and implement ContactEngine customer journey optimisation strategies by utilising data analytics in conjunction with a deep understanding of the ContactEngine transactional data model
• Write queries in SQL and build reports and dashboards.
• Collect, organise, analyse, and disseminate information with attention to detail and accuracy
• Write and debug code snippets (in JavaScript)
• Design and test APIs
• Assist with training of new implementation specialists
• Provide on-call support to customers

• Graduated with a degree in a Computer Science / Business Analytics / Data Analytics / STEM type degree
• Knowledge of basic programming languages and data structures
• Knowledge of data analysis and SQL
• Curious with a passion for learning
• A keen problem solver
• Ability to successfully work in a team-oriented, highly collaborative environment

You will have an advantage if you also have

• Technical expertise in data structure extraction and summarization
• Experience with JavaScript, C#, SQL, HTML, CSS, Python
• Experience with integration tools
• Application knowledge of Excel, Tableau (or similar BI tool)

Requisition ID: 8224.
Reporting into: Director, Professional Services.
Role Type: Individual Contributor.

How will you make an impact?

• Security Tooling: Deploy, maintain, integrate, and perform initial configuration of security tools.
• Vulnerability Management: Coordinate and conduct regular security assessments, penetration testing, and vulnerability scans to identify and address security weaknesses proactively.
• Incident Response: Lead incident response efforts to promptly detect, analyze, and mitigate security incidents and breaches. Develop and maintain incident response plans and procedures.
• Security Operations: Monitor security logs and alerts, investigate suspicious activities, and respond to security events in real-time. Implement and maintain security tools and technologies to enhance our security posture.
• Identity and Access Management: Manage user access controls, authentication mechanisms, and identity management systems to ensure appropriate levels of access and privilege.

Have you got what it takes?

• At least 5 years of experience in information security, with a focus on hands-on security engineering and operations.
• In-depth knowledge of networking protocols, operating systems, and cloud technologies.
• Strong understanding of security principles, practices, and frameworks (e.g., PCI, NIST, ISO 27001).
• Experience with security tools such as SIEM, IDS/IPS, endpoint protection, and penetration testing tools.
• Experience with public cloud security, specifically AWS, Azure, and Google Cloud Platform (GCP).

You will have an advantage if you also have:

• Relevant certifications such as CISSP, CISM, CEH, or cloud-specific certifications (e.g., AWS Certified Security – Specialty, Microsoft Certified: Azure Security Engineer Associate, Google Professional Cloud Security Engineer) are highly desirable.

Individual Contributor

The Information Security Analyst is primarily responsible for ensuring compliance with information security frameworks such as Cyber Essentials, Cyber Essentials Plus, ISO 27001, ISO 27701, ISO 42001, GDPR, and DORA. This role focuses on internal audits, regulatory compliance, and readiness for external audits while also contributing to Cybersecurity Operations Center (CSOC) activities, including incident monitoring and response.

How will you make an impact?

• Internal Audit Execution: Conduct internal audits to evaluate and enhance IT controls, compliance with standards, and risk management processes.
• Audit Preparation: Assist internal control owners in scoping appropriate evidence and preparing for external audits.
• Gap Assessments: Facilitate and/or conduct internal gap assessments and audit readiness evaluations for frameworks such as ISO 27001, GDPR, and DORA.
• Framework Tracking: Monitor updates to Cyber Essentials, ISO, and regulatory frameworks and ensure internal alignment.
• Control Documentation: Develop and maintain control narratives, walkthroughs, and documentation of compliance processes.
• Audit Findings: Identify control deficiencies and work with stakeholders to recommend cost-effective, value-added remediation actions.
• Compliance Reporting: Draft audit reports and present findings to management during status updates and closing meetings.
• External Audit Coordination: Collaborate with external audit teams to streamline processes and provide requested documentation and evidence.
• Security Monitoring: Use tools such as Rapid7 InsightIDR or other SIEM solutions to assist with security monitoring and incident detection.
• Incident Response Support: Participate in incident response efforts, documenting security incidents and assisting in containment and recovery actions.
• Threat Identification: Contribute to analyzing cybersecurity threats and implementing recommendations to improve the security posture.
• Policy and Procedure Development: Assist in creating and refining cybersecurity policies and operational procedures to align with audit and compliance objectives.
• Vulnerability Management: Support the tracking and remediation of vulnerabilities in coordination with IT and Security Operations teams.

Have you got what it takes?

• Strong expertise in audit and compliance frameworks, including ISO 27001, ISO 27701, ISO 42001, GDPR, DORA, Cyber Essentials, and Cyber Essentials Plus.

• Familiarity with CSOC tools such as Rapid7 InsightIDR or other SIEM solutions.

• Hands-on experience in internal and external audits, compliance assessments, and process improvement.

• Basic understanding of incident response frameworks and cybersecurity best practices.

• Exceptional analytical, organizational, and communication skills.

• Commitment to continuous learning and professional development in audit, compliance, and security.

You will have an advantage if you also have:

• A Master’s degree in Cybersecurity, Risk Management, or related fields is a plus.

• Certifications (preferred or required):

• Certified Information Systems Auditor (CISA)

• Certified Information Security Manager (CISM)

• Certified Information Systems Security Professional (CISSP)

• ISO 27001 Lead Auditor or Implementer

• Cyber Essentials Assessor (or equivalent)

• GIAC certifications (e.g., GIAC Certified Incident Handler - GCIH or GIAC Security Essentials - GSEC)

Individual Contributor

How will you make an impact?

• Work with various NICE departments (Support and R&D) and the customer for end-to-end resolution of issues
• Maintain high customer satisfaction throughout the entire problem resolution process, through frequent customer updates
• Conduct thorough and detailed troubleshooting to provide quality support to the client, and minimize escalations
• Participate in knowledge transfer activities as required
• Work in accordance with NICE support process, procedures, contractual SLA’s
• Document all interactions related to services requests (SRs) in NICE Support System in accordance with SLA

Have you got what it takes?

• Minimum 2-year experience supporting large, global, complex enterprise software clients
• Excellent troubleshooting skills of AWS solutions
• Experience in troubleshooting and resolving database integrity issues, performance issues, blocking and deadlocking issues, replication issues, log shipping issues, connectivity issues, security issues etc.
• Ability to detect and troubleshoot SQL Server related CPU, memory, I/O, disk space and other resource contention
• Must be available to participate in an on-call rotation to provide 24x7 support to the client.
• Excellent verbal and written communication skills

Director, Support
Individual Contributor

How will you make an impact?

• Responding to security questionnaires, contract reviews, and customer calls.
• Customer consultation to determine outcomes, success criteria and challenges/gaps.
• Develop and implement plans of action to close gaps and drive successful outcomes.
• Interface with Technical Support and/or R&D to resolve technical issues that may impede success.
• Define and create memorandums in accordance with customer’s business requirements.
• Articulate security processes throughout the organization.
• Create customer reports to achieve project alignment and unity of effort.
• Review and investigate issues raised by client and provide accurate guidance based on current documentation.
• Understand client software configuration and customizations
• Understand the install, configure and customize solutions by following implementation guides and manuals.
• Coordinate client environment data, configuration and setup in order to investigate possible issues.
• Provides information by collecting, analyzing, and summarizing development and service issues.
• Utilizes software engineering tools such as configuration management systems, build processes, and debuggers in the software development process.
• Collaborates and adds value through participation in peer case reviews, providing comments and suggestions.
• Provides reliable solutions to a variety of problems using sound problem solving techniques.
• Performs technical root cause analysis and outlines corrective action for given problems.
• Work with customer and ownership for issues collaborating with higher tiers for end-to-end resolution
• Assist with Customers request assistance via many channels including, phone, email, and various web contact methods (chat, e-Services).
• Working in accordance with NICE support process, procedures, contractual SLA’s
• Documenting all customer interactions in CRM tool in accordance with SLA.

Have you got what it takes?

• Excellent verbal and written communication skills in English.
• At least 2 years in technical support facing customers and resolving issues.
• Fast learner with ability to educate her/himself on relevant technologies
• 2 years of experience with application development
• Intimate knowledge of the customer’s connected applications.
• Excellent technical and analytical skills.
• Familiarity with servers tuning and solving performance issues plus.
• Technical development/debugging and diagnosis skills
• Integration experience with desktop enterprise software applications.
• Excellent organizational skills, ability to set own task lists and timelines.
• Ability to work in a team.
• Demonstrated interest and ability to communicate across technology and business boundaries.
• Bachelor's degree in computer science (or equivalent).

You will have an advantage if you also have:

• Knowledge on cloud software infrastructure (AWS, Azure, GCP)
• Speaking multiple languages
• Cybersecurity training and certifications

Reporting into:Director, Cloud Information Security and Architecture.

Individual Contributor.

How will you make an impact?

• Work on the technical design, development, release and deployment of cloud-based infrastructure, automation, and applications
• Working with, and supporting, the development team with application configuration for deployment, monitoring and other automation
• Provide operational management and support of Linux and Windows servers and containers, including server hardening, patching, network security and log management to deliver web application and service stacks
• Work with the DevOps Manager and Information Security team members to ensure that our infrastructure meets compliance requirements and engineering best practices
• Mentor other more junior team members when required
• Provide on-call/out-of-hours support, as part of a rota with other team members

Required

• 5+ years of experience working with AWS infrastructure
• 5+ years of experience working with Linux and Windows servers
• 3+ years experience working with Kubernetes, Helm, and the related DevOps toolchain in a production environment (not just a test environment)
• 3+ years experience using Terraform or similar tools to provision infrastructure from code
• Experience with Bash shell scripting
• Ability to conduct detailed code reviews against Helm and IaC
• A Security first approach

Nice to have, but not essential

• Experience maintaining ISO 27001 compliance (or equivalent security standard)
• Familiarity working with various CI/CD solutions – for example, Azure DevOps, GitLab, GitHub actions, TeamCity, Octopus Deploy
• Experience working with and tuning Microservices at scale, with production workloads
• Experience managing relational and non-relational databases, for example, RDS MySQL, RedShift
• Familiarity with any of the following logging, monitoring and alerting tools – CloudWatch, Splunk, StatusCake, Grafana, PagerDuty
• Scripting experience with PowerShell, Ruby, Python
• Experience working with Agile software development teams

Reporting into:Justin Miller (UK)

Individual Contributor.