As a Senior Cyber Security Engineer, you will play a key role in supporting the design, implementation, and maintenance of Cyber Security Engineering solutions, controls, and processes across IT and OT environments. You will be responsible for supporting cyber security platform administration, enhancing our security posture, and ensuring that new capabilities are securely deployed in alignment with business objectives. This includes collaborating with stakeholders, supporting compliance efforts, and helping to drive proactive cyber risk reduction.
This role requires a deep understanding of security engineering concepts, infrastructure technologies, and best practices. The ideal candidate will have strong communication skills, a solid grasp of IT and OT systems, and a passion for continuous improvement in cybersecurity operations.
What you'll be doing as a Senior Cyber Security Engineer
Support the creation of secure asset builds and system hardening capabilities across end-user computing and server environments.
Collaborate with business stakeholders to align cybersecurity engineering strategies and controls with organisational goals.
Develop and maintain cybersecurity engineering documentation, policies, and procedures.
Implement and manage security controls across both IT and OT environments.
Monitor compliance of endpoint and network security solutions, ensuring correct configurations and up-to-date signatures.
Perform cloud security assessments and produce supporting documentation for secure cloud adoption.
Evaluate and recommend security technologies, tools, and vendors.
Investigate vulnerabilities and implement mitigation actions.
Liaise with technology and business teams regarding patching and vulnerability remediation.
Develop and maintain cybersecurity engineering dashboards and metrics.
Provide tooling support and maintenance for Identity & Access Management, Privileged Access Management, Endpoint Security, and Network Security.
Support compliance with standards and regulations, including GDPR, NIS, and ISO 27001.
Monitor and optimise security engineering tool performance, implementing proactive solutions.
Stay current on cybersecurity trends, emerging threats, and new technologies.
What you should bring to the role
Experience in Security Engineering, with a focus on process and control design in an enterprise environment.
Strong understanding of both IT and OT systems and infrastructure.Experience in identifying and remediating cyber risks in evolving digital environments.
Good knowledge of identity and access management technologies (e.g. Entra ID, CyberArk).
Familiarity with a range of operating systems and security considerations across SaaS, IaaS, end-user computing, and server estate.
Sound knowledge of network security technologies, including firewalls, IDS/IPS, and NAC.
Strong analytical, planning, and organisational skills.
Ability to communicate technical issues clearly to non-technical stakeholders.
Degree in Cyber Security, Computer Science, Information Technology, Engineering, or a related field.
Industry certification(s) such as CCSP, CompTIA Security+, or SC-200.It would be great if you also had
Previous experience working in a large, complex infrastructure-based or utility organisation.
Experience in systems or network administration in IT and/or OT environments.
Experience leading or mentoring others in delivering cybersecurity outcomes.
Security engineering vendor or product certifications such as CVA, Microsoft Certified: Azure Security Engineer Associate, Tenable, or CyberArk.GCS is acting as an Employment Agency in relation to this vacancy
