Cyber Security Engineer

You'll work closely with internal technology teams, IT Operations, and external partners including a Managed SOC, MSP, and vCISO. It's a hands-on role with real ownership across security operations, incident response, and continuous improvement of controls., This is a practical, delivery-focused position where you'll be actively involved in identifying, investigating, and remediating security risks. You'll support day-to-day security operations while also contributing to longer-term improvements across tooling, processes, and controls, particularly within a regulated environment., Incident Response & Threat Monitoring

• Monitor and respond to alerts from SOC and security tools
• Investigate, contain, and remediate security incidents
• Escalate complex issues where required
• Contribute to post-incident reviews and root cause analysis
• Maintain accurate incident records and tracking

Service & Ticket Management

• Manage security-related tickets within the ITSM platform
• Prioritise and resolve issues in line with SLAs
• Work closely with wider IT teams on cross-functional issues
• Maintain clear documentation and audit trails

Vulnerability & Patch Management

• Support vulnerability scanning and assessment processes
• Review findings, assess risk, and coordinate remediation
• Ensure timely patching across endpoints and servers
• Produce reports on vulnerability and patching status

Endpoint Security & Microsoft Security Stack

• Administer Microsoft Defender, Intune, Purview (DLP), and Entra ID
• Manage device configurations, security baselines, and EDR settings
• Support device onboarding and troubleshooting
• Strengthen conditional access, MFA, and compliance controls

Security Awareness

• Support organisation-wide security awareness initiatives
• Monitor training completion and user behaviour trends
• Assist with reporting and internal communications following incidents

Security Engineering & System Hardening

• Contribute to hardening standards across OS, applications, and endpoints
• Support secure configuration and baseline enforcement
• Ensure systems remain aligned with internal policies

Reporting & Analytics

• Produce dashboards covering vulnerabilities, patching, SOC activity, and user behaviour
• Support audit reporting and continuous improvement initiatives

Governance, Risk & Compliance (Desirable)

• Support audits and compliance frameworks
• Assist with vendor risk assessments
• Contribute to documentation and evidence gathering

• Hands-on experience with Microsoft Defender, Intune, and Entra ID
• Experience with vulnerability management and patching tools
• Familiarity with ITSM platforms and service management processes
• Strong understanding of identity and access controls
• Ability to investigate and triage security incidents
• Solid grounding in Windows environments, networking, and cloud/SaaS security

Desirable:

• Experience with Microsoft Purview (DLP) or similar
• Background within financial services or insurance
• Knowledge of frameworks such as NIST, ISO 27001, or CIS, * Strong problem-solving ability and attention to detail
• Collaborative mindset, able to work across technical and business teams
• Clear communicator, able to explain technical issues simply
• Adaptable and quick to learn new technologies
• Genuinely interested in cyber security and staying ahead of emerging threats