Senior Cyber Security Engineer
Reading/Hybrid (one day per week in the office)
Salary: £65,000-£75,000
We are working with a leading UK pensions and insurance consulting and administration business. A FTSE 250 company, our client works with over 1,400 pension schemes, administers over one million member accounts, and supports insurance companies in the life and bulk annuities sector.
ABOUT THE ROLE
You will join an expanding cyber security team working alongside internal engineers, security operations analysts, and an external 24/7 SOC. Reporting to the Cyber Security Engineering Manager, you will carry out daily security engineering tasks and lead security hardening projects to protect our client's IT infrastructure, networks, and data.
RESPONSIBILITIES
- Provide expert technical security guidance covering IT assets, change control, security testing, secure systems design, and security controls
- Own and develop the vulnerability management programme, with a focus on application security testing, web application firewalls, and securing development pipelines
- Mentor and provide security direction to other team members
- Carry out security engineering tasks to agreed SLAs/KPIs using ITIL best practice
- Develop understanding of threats, risks, and evolving attack vectors facing the business
- Represent the security team as subject matter expert in meetings and projects
- Support the operations team with security incident investigation in complex cross-technology environments
- Assist with security training and awareness campaigns, market reviews, supplier assessments, and client security questionnaires
ESSENTIAL REQUIREMENTS
- Right to work in the UK
- Strong experience in web application security, vulnerability management, penetration testing, and hardening IT systems
- Experience with cloud hosting, cloud migration, application testing, and working with developers to improve security
- Solid knowledge of security products including WAFs, SIEM, AV, email/web gateways, firewalls, load balancers, ACLs, TCP/IP, routing, and switching
- Familiarity with OWASP, SASE, zero-trust, and risk-based vulnerability management
- Background in infrastructure and networks
- Working towards or holding CISSP, SANS GCIA, CompTIA Security+, CCNA/CCNP or equivalent
- Excellent written and verbal communication skills, including network diagramming
- Willingness to travel to other sites as required
DESIRABLE
- Computer Science degree or equivalent experience
- Knowledge of ISO27001, Cyber Essentials, and AAF control frameworks
BENEFITS
Competitive salary, discretionary annual bonus, 25 days holiday (with buy/sell option), flexible bank holidays, matched pension contributions, healthcare cash plan, flexible benefits scheme, life assurance (4x salary), retail discounts, Employee Assistance Programme, digital GP service, paid volunteering day, and staff referral scheme.
Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted.
Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation
We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website
:quality(80))
:quality(80))
:quality(80))