Cyber Security Engineer

Cyber Security Engineer
Salary: £50,000 - £60,000
Location: Home based with some travel
Build & Mature Security Practices
Portare Solutions is partnering with a key client, an organisation in a significant growth phase, to find a Cyber Security Engineer. This is a brilliant chance to join a growing team and directly contribute to enhancing their security infrastructure and practices.
About The Opportunity
You'll be part of a dynamic team responsible for the day-to-day operation of the security infrastructure, keeping a close eye on security events, and responding effectively. You'll be involved in designing, implementing, monitoring, and supporting IT security toolsets, tackling complex issues in a large-scale enterprise hybrid environment. The role is a mix of BAU and project work, including Azure security projects (with a strong M365 focus), automation, and ensuring new applications are deployed securely. It's an exciting time to join as the organisation is undergoing large-scale transformation and IT maturity improvements.
Your Key Responsibilities Will Include:

• Helping to build and mature Microsoft Security practices using the Azure M365 stack and E5 capabilities.
  
• Evaluating the effectiveness and coverage of security products and tooling to continuously monitor and protect assets.
  
• Identifying, mitigating, and managing security threats, vulnerabilities, and risks.
  
• Working closely with the managed security operation centre.
  
• Assessing and responding to external threat intelligence reports.
  
• Conducting internal audits of security controls.
  
• Supporting ISO27001, NIST, Cyber Essentials Plus, and other audit programmes.
  
• Providing support and guidance within IT and the wider business to ensure policy compliance.
  
• Supporting the continuous improvement of security policies, procedures, standards, and guidelines.
  
• Supporting the management and investigation of security events, including post-incident reviews.
  
• Researching security enhancements and making recommendations.
  
• Staying current on information technology trends and security standards.
  Who We're Looking For
  We are seeking a candidate with solid technical IT Security experience.
  Experience & Expertise:
  
• Demonstrable experience in a similar technical IT Security role for a medium to large enterprise.
  
• Demonstrable specific M365 experience is essential (Sharepoint Online, Purview, InTune, Defender, Sentinel, Azure AD/Entra).
  
• Knowledge & understanding of security principles across: SIEM, Antivirus, DLP, Firewalls, Open Source Filtering tools, Cloud security (Azure), EDR, Scanning/vulnerability tools, IdAM (PAM).
  
• Experience working with a SOC is desirable.
  
• Knowledge of Windows Servers and Linux Servers.
  
• Familiarity with Endpoint and network security technologies.
  
• Knowledge of IT Security and Governance best practices and industry standards (ISO27001, NIST, Cyber Essentials etc).
  
• Strong understanding of technical security risk, threat, and vulnerability management principles.
  
• Ability to drive own workload, identifying risks and requirements, and working flexibly.
  Qualifications:
  
• Recognised IT or Information Security qualifications (Cisco, SANS, ISO27001, CCSP, CISA, or SSCP) desirable.
  
• AZ500, SC200, SC900 desirable.
  
• CEH desirable.
  Skills & Behaviours:
  
• Intuitive and self-motivating.
  
• Excellent verbal and written communication abilities.
  
• Excellent interpersonal skills.
  
• Ability to work accurately and at pace in a rapidly changing risk environment.
  
• Ability to respond to risks and issues quickly.
  
• Willingness to learn and undertake training