Senior Cyber Security Engineer

The Cyber Security Manager / Senior Engineer is responsible for security operations, risk management, incident response, policy development and user awareness. The role will manage external 3rd party and internal virtual resources.

Client Details

The client is a well-established, multi-site professional services organisation operating at national scale. With a strong emphasis on collaboration, long-term relationships and responsible governance, the organisation values security as a business enabler.

Description

• Define, maintain and enhance the cyber security strategy, frameworks, policies and standards across the organisation
• Act as the senior point of contact for cyber security matters, providing clear guidance to leadership and technical teams
• Lead engagement with a third-party Security Operations Centre (SOC), ensuring effective monitoring, detection and response
• Oversee incident management, including coordination, post-incident reviews and continuous improvement actions
• Own and manage key security platforms, including security awareness and secure communications tools
• Ensure effective configuration and use of SIEM and monitoring technologies, with meaningful reporting for senior stakeholders
• Identify, assess and mitigate cyber risks through regular assessments and control reviews
• Chair or contribute to governance forums focused on cyber risk, compliance and assurance
• Embed security awareness across the organisation through targeted training and campaigns
• Support compliance with relevant regulations and standards (e.g. data protection, information security frameworks)
• Assess and monitor third-party and supplier security posture where required

Profile

• Proven experience in a cyber security engineering
• Strong understanding of cyber risk management, incident response, threat detection and security governance
• Very strong familiarity with Microsoft security technologies, including Microsoft 365, E5 licensing and the associated security stack (e.g. identity, endpoint, email, SIEM and cloud security tooling)
• Broad technical exposure across infrastructure, cloud and network technologies, with the ability to translate technical risk into business language
• Experience working with SIEM platforms and security operations functions, including third-party SOCs
• Knowledge of relevant regulatory and compliance frameworks (e.g. GDPR, ISO 27001 or similar)
• Ability to engage confidently with senior stakeholders and influence outcomes across technical and non-technical audiences
• Relevant security certifications (e.g. CISSP, CISM, or equivalent) are advantageous but not essential

Job Offer

• Flexible and hybrid working
• 25 days annual leave (plus bank holidays)
• Health Insurance
• Life Assurance
• Greener car scheme