Senior Cyber Security Engineer

You'll be a Senior Cyber Security Engineer within the Information Security division of one of the fastest-growing and most successful FinTech companies in Europe. You will play a pivotal role in engineering and maintaining our defensive capabilities, directly impacting the organisation's security posture and operational efficiency.

Your responsibilities will encompass a diverse range of engineering and operational tasks, all aimed at delivering tangible results that align closely with our business objectives. To thrive here you will need to take ownership of your tasks, adopt a pragmatic mindset, and be immensely collaborative.

We are currently entering a new phase of growth as we endeavour to transform the payments sector and empower the experience economy. Our mission involves building next-generation products that provide our customers and consumers with the tools to turn transactions into meaningful relationships. We work in a fast-paced industry, and to be the best, we need to move fast and be agile. What you will do...

The Senior Cyber Security Engineer is a hands-on, technical role responsible for the health, optimization, and evolution of our security operations tooling. You will bridge the gap between engineering and operations, ensuring our analysts have the best tools and detections available to them. Security Engineering & Tooling

• Maintain and administer SecOps tooling: Take ownership of the health and configuration of critical security tools, including SIEM, EDR, and SOAR platforms.
• Build and maintain SIEM rules: Develop high-fidelity detection logic to identify malicious activity, minimizing false positives and ensuring relevant alerts for the SOC.
• Build and maintain SOAR playbooks: automate repetitive tasks and enrich alerts by creating robust playbooks and integrations, allowing the team to focus on high-value analysis.

Operational Capability & Growth

• Build out new SOC capabilities: identifying gaps in our current visibility or tooling and engineering solutions to close them.
• Conduct Threat Hunting: Proactively search through network, endpoint, and cloud data to identify hidden threats that evade automated prevention.
• Upskill the team: Mentor analysts and help them develop engineering mindsets, enabling them to perform basic engineering actions and automation tasks.

• Experience: At least 4+ years of experience in a Security Engineering role.
• Technical Proficiency: Strong hands-on experience working with SIEM and SOAR tools, including building rules and playbooks from scratch. Experience with Google SecOps (formerly Chronicle) is highly preferable.
• Scripting & Automation: Proficiency in scripting languages (e.g., Python, Go) to build custom integrations and automate workflows.
• Detection as Code: Experience managing detection logic via CI/CD pipelines (e.g., GitHub) and applying version control practices to security content.
• Cloud Expertise: Experience working within cloud environments, particularly Google Cloud Platform (GCP) and AWS.
• Agile Mindset: Experience working in fast-paced agile technology environments where adaptability and speed are key.
• Threat Knowledge: A good level of understanding of threat actors, including the Tactics, Techniques, and Procedures (TTPs) they utilize.
• Passion: A genuine interest in Cyber Security and keeping up to date with the latest industry trends.
• Qualifications: Relevant cyber security qualification(s) (e.g., GCIH, GCIA, GMON, or vendor-specific engineering certifications).