Cyber Security Engineer

This role is not a people-management post in the traditional sense-its purpose is to lead through engineering expertise, act as the technical authority across cloud and endpoint security, and champion modern, automated defences across the digital estate. Key ResponsibilitiesSecurity Engineering & Automation

• Architect and implement security controls across Microsoft 365, Azure, Dynamics 365, Kubernetes (AKS), and AI/ML workloads.
• Lead deployment of Conditional Access, Microsoft Defender for Cloud, Purview DLP, Azure Firewall, and related Microsoft security technologies.
• Embed security into DevOps pipelines, CI/CD workflows, IaC, and containerised environments.
• Automate detection and response using Microsoft Sentinel SOAR, custom playbooks, automation rules, and telemetry pipelines.

Platform Security Oversight

• Own endpoint security through Intune, ensuring robust device compliance aligned with Zero Trust principles.
• Harden AKS clusters through RBAC, secrets management, and runtime protection.
• Secure AI/ML data pipelines and models, implementing guardrails for model integrity and protection against prompt-injection threats.

Cloud & Network Security

• Engineer secure configurations across Cisco Meraki infrastructure and Umbrella SWG services.
• Enforce network segmentation, micro-perimeter security, and policy-based routing for hybrid cloud/on-prem environments.
• Oversee DNS, secure web access, remote access gateways, and edge protection.

Security Operations & Threat Defence

• Act as the senior escalation point for complex threat investigations and major incident response.
• Lead red-team simulations, threat hunting, and vulnerability assessments.
• Continuously tune detection logic, improve alert fidelity, and enhance security monitoring pipelines.

Leadership & Mentorship

• Provide hands-on guidance and mentoring to junior and mid-level security engineers.
• Shape, communicate, and drive adoption of the security engineering roadmap.
• Collaborate with architects, delivery teams, and platform owners to ensure security is embedded by design.

• Deep technical expertise in Azure, Microsoft 365 Security, Defender, Sentinel, and AKS.
• Strong background in cloud security engineering, automation, and IaC.
• Experience with Zero Trust, endpoint security, CI/CD pipeline security, and modern cloud-native controls.
• Ability to lead through influence and technical authority rather than traditional line management.
• A problem-solver who thrives in hands-on engineering roles and enjoys building scalable, resilient security capabilities.

• Permanent role with a hybrid model (1 day per week on-site in Glasgow).
• Opportunity to drive a major security transformation and build a modern engineering-led capability.
• High autonomy, impactful work, and a chance to shape security across cloud, enterprise, and AI platforms.