Cyber Security Engineer

One of our clients - a leading investment bank - is seeking an experienced Security Engineer to join its Cyber Security team. This role will focus on strengthening security monitoring, detection engineering, automation, and proactive threat mitigation across a complex enterprise environment. Working closely with security operations, infrastructure, and engineering teams, you will play a key role in enhancing detection capabilities, improving security controls, and driving automation initiatives across both on-premise and cloud-based platforms. Responsibilities:Design and enhance security monitoring, detection, and response capabilities across enterprise systems and infrastructureDevelop threat detection rules, threat hunting use cases, and security automation workflowsSupport the ongoing development and optimisation of SIEM and security orchestration platformsAssess security risks and provide guidance on appropriate controls for new technologies and projectsIntegrate and onboard new log sources to improve visibility across critical systems and servicesCollaborate with SOC teams to improve detection coverage and reduce response timesDevelop scripts and automation tools to improve operational efficiency and security postureSupport incident investigations, threat hunting activities, and continuous security improvement initiativesProvide technical expertise on security tooling, monitoring strategies, and emerging threats

Key Skills:Strong experience within Security Engineering, Detection Engineering, or Cyber Security OperationsHands-on experience with SIEM technologies, threat detection, and security monitoringExperience with security tooling such as EDR, DLP, email security, and network security platformsKnowledge of security frameworks and attack methodologies including MITRE ATT&CK and NISTStrong understanding of Active Directory security and Windows event loggingExperience with scripting and automation using PowerShell and/or PythonGood understanding of networking concepts including firewalls, VPNs, proxies, and TCP/IPExperience working across cloud environments including Azure, AWS, or GCPExcellent communication skills with the ability to work across technical and business teams Experience:Security orchestration and automation (SOAR)Privileged Access Management (PAM) solutionsThreat hunting and advanced detection engineeringFinancial services or other regulated environmentsRelevant industry certifications such as AZ-500, SC-200, CompTIA Security+, or equivalent