National AI Awards 2025Discover AI's trailblazers! Join us to celebrate innovation and nominate industry leaders.

Nominate & Attend

Lead Cyber Security Engineer

SThree
Glasgow City
2 months ago
Applications closed

Related Jobs

View all jobs

Lead Cyber Security Engineer – London - Retail

Senior Lead, Cyber Security Engineer - (Encryption and O365 Security)

Senior Lead, Cyber Security Engineer - (Encryption and O365 Security)

Senior Cyber Security Engineer

Automotive Cyber Security Engineer

Senior Cyber Security Engineer

SThree are pleased to announce we're recruiting for a talentedLead Cyber Security Engineerto join & guide our excellent team based in our fantastic office space located in theCadworks Building, Glasgow.

The Cyber Security Engineering Lead acts as the technical authority across all domains of cloud and endpoint security, taking full ownership of hardening, automation, and threat mitigation. The role is not managerial in the traditional sense it exists to drive technical capability, mentor through engineering leadership, and deliver resilient, scalable defences. This role is hands-on, outcome-focused, and instrumental in building, automating, and scaling secure architectures and controls across the digital estate.


About us


SThree is the global STEM-specialist talent partner that connects sought-after specialists in life sciences, technology, engineering and mathematics with innovative organisations across the world. We are the number one destination for talent in the best STEM markets: Recruiting highly skilled professionals and discovering life-changing jobs for the unsung heroes who will positively shape our future.


What are the day-to-day tasks?


Security Engineering & Automation

Architect and implement security controls across Microsoft 365, Azure, Dynamics 365, Kubernetes (AKS), and AI/ML workloads.


Lead the design and deployment of conditional access, Defender for Cloud, Purview DLP, Azure Firewall, and related services.
Integrate security into DevOps pipelines, CI/CD, infrastructure-as-code, and container work flows.
Automate threat detection and response using Microsoft Sentinel SOAR, custom playbooks, and telemetry pipelines.

Platform Security Oversight

Own and optimise endpoint security through Intune, ensuring device compliance and integration with Zero Trust.


Harden AKS clusters and cloud-native apps through role-based access control (RBAC), secrets management, and runtime protection.
Secure data pipelines and models in AI workloads, implementing guardrails for model integrity and prompt injection defence.

Cloud & Network Security

Engineer secure access and posture for Cisco Meraki infrastructure and Umbrella SWG services.


Enforce network segmentation, micro-perimeter security, and policy-based routing for hybrid network models.
Oversee DNS, web access, and remote gateway protection at the edge.
Security Operations & Threat Defence
Act as the technical escalation point for complex threat investigations and incident response.
Lead red-teaming simulations, vulnerability assessments, and threat hunting activities.
Support proactive telemetry monitoring and improvement of detection logic and alert fidelity.

Leadership & Mentoring

Provide engineering mentorship to junior analysts and engineers; lead by doing.


Shape and communicate the security engineering road map in alignment with the Cyber Security Strategy.

What skills and knowledge are we looking for?

Deep hands-on knowledge of Microsoft security stack (M365 Defender, Sentinel, Intune, Azure Policy, PIM).


Proven experience deploying Cisco Meraki and Umbrella in enterprise environments.
Experience in securing Kubernetes, cloud-native infrastructure, and containerised apps.
5+ years in a senior security engineering or architect role.
Experience leading technical teams or acting as a technical lead on security initiatives.
Certifications such as AZ-500, CISSP, CCSP, GIAC, or similar highly advantageous.
Engineer-first mentality: solves security problems through systems thinking and automation.
Strategic, yet pragmatic: balances best practice with business context.
Proactive, communicative, and passionate about elevating security posture through innovation.
MS Engineer & MS Data Scientist Associate
Ability to exercise independent judgment and act on it.

Benefits for our U.K. teams include:

The choice to work flexibly from home and the office, in line with our hybrid working principles


Bonus linked to company and personal performance
Generous 28 days holiday allowance, plus public holidays
Annual leave purchase scheme
Five days paid Caregiver/Dependant leave per annum
Five paid days off per year for volunteering
Private health care, discounted dental insurance and health care cash back scheme
Opportunity to participate in the company share scheme
Access to a range of retail discounts and saving

National AI Awards 2025

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Cyber Security Jobs Skills Radar 2026: Emerging Frameworks, Tools & Certifications to Learn Now

Cyber threats are evolving—and so must the people defending against them. As ransomware, AI-enhanced phishing, and supply chain attacks grow more advanced, UK employers are urgently hiring cyber security professionals with the right mix of strategic and hands-on skills. Welcome to the Cyber Security Jobs Skills Radar 2026, your go-to guide for the most in-demand tools, frameworks, certifications, and technologies shaping the UK's cyber workforce. Whether you're a SOC analyst, penetration tester, or cloud security architect, this annual radar is designed to help you stay ahead of the market.

How to Find Hidden Cyber Security Jobs in the UK Using Professional Bodies like BCS, CIISec & More

The demand for skilled cyber security professionals in the UK has never been higher. With threats increasing in sophistication and frequency, organisations are urgently hiring ethical hackers, threat analysts, GRC specialists, and security architects. But many of the most valuable roles—particularly in government, defence, and critical infrastructure—are never publicly advertised. Instead, these jobs are shared behind the scenes through trusted networks, private communities, and professional bodies. In this article, we explore how to uncover hidden cyber security jobs in the UK using organisations like the BCS (The Chartered Institute for IT), CIISec (The Chartered Institute of Information Security), ISACA, and ISC² UK Chapter. We’ll show you how to use membership directories, special interest groups, CPD events and informal networks to gain early access to roles most people never see.

How to Get a Better Cyber Security Job After a Lay-Off or Redundancy

Redundancy is never easy—especially in a fast-moving field like cyber security, where your skills and experience are constantly evolving. But if you’ve recently been made redundant from a cyber security role, know this: the UK cyber workforce remains in high demand, and your expertise is more valuable than ever. Whether you’re a SOC analyst, penetration tester, incident responder, security architect or GRC specialist, there are still thousands of opportunities across sectors including finance, defence, government, retail, and critical infrastructure. This guide will help you turn redundancy into a career relaunch, with a clear action plan tailored to the UK cyber security job market.