Cyber Security Engineer

The role requires a pragmatic individual who can identify risks and opportunities for improvement across the cyber security landscape and drive the implementation of effective, proportionate controls.

The Cyber Security Engineer will be responsible for the implementation, management, and continual improvement of security controls across the organisation's IT estate.

They will lead the protection of networks, endpoints, and cloud environments, ensuring threats are detected, analysed, and responded to in a timely manner, while strengthening overall security operations to safeguard organisational systems, data, and services., * Collaborate with infrastructure and technical services teams to review designs, identify risks, and embed security best practice.

• Deploy and maintain security controls across a diverse operational environment and technology stack.
• Lead the design, delivery, and implementation of new security systems and controls from initiation through to completion.
• Monitor emerging threats, trends, and technologies, assessing their relevance and value to the organisation's security strategy.
• Apply core security principles to new and non-standard technologies, enabling business objectives while managing risk.

We are seeking an experienced Cyber Security Engineer to join the Network Plus Cyber Security team. The successful candidate will be capable of operating effectively from the outset, working both independently and as part of a wider team., * SIEM / SOAR: Strong understanding of SIEM principles, including data source integration, use case development, and the design of SOAR workflows for automated response.

• Security Tooling: Hands-on experience with EDR/XDR, secure web gateways (SWG), and email security platforms.
• Technology Stack Exposure: Experience with SentinelOne, Netskope, Rapid7, and the Microsoft Azure ecosystem is advantageous.
• Emerging Technologies: Awareness of AI-related security risks and familiarity with DevSecOps practices and secure development integration.
• Infrastructure & System Security: Ability to identify, assess, and remediate vulnerabilities across hardware, software, and supporting infrastructure.
• Identity & Access Management: Practical experience with privileged identity management (PIM), privileged access management (PAM), and role-based access control (RBAC), with the ability to apply these controls effectively.
• Network & Data Security: Working knowledge of firewalls, encryption (data at rest and in transit), and enterprise-level malware defence strategies.
• Security Architecture & Design: Ability to translate high-level architectural designs into implementable technical controls, ensuring solutions are secure by design. Expo-sure to Zero Trust principles is beneficial.
• Cloud & Endpoint Security: Experience securing cloud environments and Windows-based endpoints within an enterprise setting., * Familiarity with recognised security frameworks and standards, such as ISO 27001, Cyber Essentials, NIST, CIS, and OWASP.
• Relevant industry certifications (e.g. CEH, GIAC, CompTIA Security+, CISSP) are advantageous; candidates without certifications should demonstrate a clear commitment to achieving them, with support for professional development available.
• Minimum of 5 years' hands-on experience in IT, with direct responsibility for cyber security operations, system security, or network security.

We offer a competitive salary based on experience along with a full benefits package., Network Plus is an award-winning business delivering essential utility and infrastructure services for the UK's major providers of gas, power, telecoms, transport, water, and wastewater. We value the variety of experience, perspective, and other points of difference our workforce, clients, and supply chain offer. We are actively working with colleagues across the Network Plus Group to develop an inclusive environment - we want all our employees to feel valued and included to enable everyone to thrive at work and understand the value of their contribution matters no matter their background, identity, or circumstances. You must create an Indeed account before continuing to the company website to apply