Join to apply for the Cyber Security Engineer role at Gespreksleider Jacobs
2 days ago Be among the first 25 applicants
Join to apply for the Cyber Security Engineer role at Gespreksleider Jacobs
Get AI-powered advice on this job and more exclusive features.
Join a team at the heart of the global economy! The Department for Business and Trade ('DBT') and Inspire People are partnering together to bring you an exciting opportunity for a Lead Cyber Security Engineer you will play a vital role in safeguarding the department's digital estate, supporting the UK's economic resilience and global competitiveness. You'll lead the design and implementation of secure-by-design solutions across cloud, hybrid, and on-premises environments, embedding security throughout the digital lifecycle. Salary between £59,634 to £79,133 (including allowances) plus excellent Civil Service benefits including 27% pension contribution. Salary is dependent on location and technical skills as assessed at interview. Flexible, hybrid working from London, Cardiff, Darlington, Belfast, Birmingham, Salford and Edinburgh.
About The Role
Your responsibilities will span both strategic and operational domains. You'll lead security engineering across DBT's digital platforms, ensuring robust protection of trade, business, and investment systems. You'll also be at the forefront of the Security Operations Centre (SOC), overseeing the identification, collection, and analysis of security event data to generate high-fidelity, actionable alerts for cyber analysts. Working closely with the SOC Manager, you'll ensure that security tooling and data pipelines are current, effective, and tailored to reduce alert fatigue. You'll create bespoke analytic rules and collaborate with analysts to refine detection capabilities. You'll also take an active role in managing security alerts and leading incident response and investigation efforts.
As a senior colleague, you'll advise on cyber risks, emerging threats, and mitigation strategies aligned with the Government Security Framework and standards. You'll collaborate across government, industry, and international partners to uphold the UK's cyber reputation. Additionally, you'll mentor and develop talent within the cyber team, fostering a culture of innovation, continuous improvement, and shared learning.
About You
- Be a good, open communicator through written, verbal and virtual mediums.
- Be a good decision-maker
- Possess strong collaboration skills recognising the role must work with other Cyber team members and with various Service teams and third parties
- Be able to prioritise own workload based on the overall requirements of the SOC and SOC manager.
Main Responsibilities
You will be:
- Leading large, cross-functional technical team in the design, development, and enablement of automated monitoring processes, advising on the latest SIEM (Security Information and Event Management) and network analysis tools, techniques, and procedures to detect malicious activity, while communicating directly with leadership on the progress and status of monitoring.
- Leading wider implementation of a monitoring strategy, ensuring roadmaps are achieved as expected, ensuring requirements, policies, and standards to govern all activities and outputs are met.
- Reviewing high-priority or high-complexity analysis of security event data to manage security incident response, making key decisions on reporting or escalations for monitoring Containing and remediating those incidents, identifying potential process improvements.
- Communicating with a broad range of senior stakeholders and be responsible for defining the vision, principles, and strategy for incident response Deputising for the SOC manager as a when required.
- Reviewing incident documentation ensuring that appropriate lessons learned are captured and implemented.
- Maintaining and integrating Cyber Threat Intelligence services to enhance the Departments capabilities to detect threats.
- Mentor junior engineers and contribute to the development of the security profession.
Skills And Experience
It is essential that you have:
- Proven experience in cloud cyber security engineering in a SecOps/Security environment
- Ability to lead technical teams and influence senior stakeholders.
- Expertise in Log management.
- Experience working in a DevOps environment and following DevOps practices.
- A good working knowledge of multi-cloud environments, or expert knowledge in at least one recognised major cloud services provider,(e.g. AWS, Azure etc) network security, and secure software development.
- Incident management and alerts triage experience
- Experience in Microsoft Sentinel
- Strong understanding of security principles, technologies, and frameworks (e.g., NCSC guidance, ISO 27001, NIST).
It Is Desirable That You Have
- Experience working with Django framework
- Good working knowledge of Query Languages (SQL, KQL (Kusto), etc.)
How To Apply
As part of the application process you will be asked to upload a CV which outlines your experience, skills and fit for the role, and to complete a short, pre-recorded video screening interview (alternately you can provide written answers to questions). Inspire People will assess your application against the essential criteria listed above to compile a longlist of applications, which will then be sifted by DBT hiring managers. If you are successful, you will be invited to interview.
Sift will be from week commencing 1st September 2025
Interviews will be from week commencing 8th September 2025
Please note these dates are indicative and may be subject to change. Please ensure you follow this guidance on using Artificial Intelligence (AI) in your application or interview
If You Join DBT, You Will Get
learning and development tailored to your role
a flexible, hybrid working environment with options like condensed hours
a culture encouraging inclusion and diversity
a Civil Service pension with an average employer contribution of 27%
annual leave starting at 25 days rising to 30 days with service
three paid volunteering days a year
an employee benefits programme including cycle to work
More About DBT
This role can only be worked from within the UK, not overseas. If you are based in London, you will receive London weighting. DBT employees work in a hybrid pattern, spending 2-3 days a week (pro rata) in the office on average. T
LNKD1_UKTJSeniority level
- Seniority levelMid-Senior level
Employment type
Job function
- Job functionInformation Technology
- IndustriesStrategic Management Services
Referrals increase your chances of interviewing at Gespreksleider Jacobs by 2x
Sign in to set job alerts for “Cyber Security Engineer” roles.
Culcheth, England, United Kingdom 3 weeks ago
Huddersfield, England, United Kingdom 3 weeks ago
Manchester Area, United Kingdom 1 week ago
Blackburn, England, United Kingdom 4 days ago
Manchester, England, United Kingdom 5 days ago
Manchester, England, United Kingdom 2 weeks ago
Helsby, England, United Kingdom 1 week ago
Manchester, England, United Kingdom 1 month ago
Manchester, England, United Kingdom 5 days ago
Manchester, England, United Kingdom 1 week ago
Macclesfield, England, United Kingdom 1 week ago
Macclesfield, England, United Kingdom 2 weeks ago
Daresbury, England, United Kingdom 2 months ago
Macclesfield, England, United Kingdom 2 weeks ago
Daresbury, England, United Kingdom 15 hours ago
Information Security Analyst, Vulnerability Management (Manchester)
Manchester Area, United Kingdom 3 weeks ago
Manchester, England, United Kingdom 1 month ago
Manchester, England, United Kingdom 2 weeks ago
Daresbury, England, United Kingdom 13 hours ago
Manchester Area, United Kingdom 2 weeks ago
Manchester Area, United Kingdom 1 week ago
Salford, England, United Kingdom 5 days ago
Waterside, England, United Kingdom 22 hours ago
Senior Information Security Analyst, SOC (Manchester)
Manchester Area, United Kingdom 18 hours ago
Elland, England, United Kingdom 4 days ago
Daresbury, England, United Kingdom 1 month ago
Assistant Security Consultants / Security Engineers - Property and Buildings
Manchester, England, United Kingdom 1 month ago
Security Logging and monitoring specialist
Knutsford, England, United Kingdom 6 days ago
We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr
