Cyber Security Engineer
Role details
Job location
Tech stack
Job description
- Contribute to security architecture decisions for new services, platforms, and third-party integrations.
- Manage and mature controls across Microsoft Defender for Cloud, Defender for Endpoint, Defender for Identity, and Defender for Office 365.
- Operate and improve Azure security services including Microsoft Entra ID (conditional access, PIM, identity protection), Azure Policy, and Defender for Cloud Apps.
- Support infrastructure teams with secure configuration of Azure landing zones, networking (NSGs, Azure Firewall, Private Endpoints), and IaaS/PaaS workloads.
- Develop and maintain security-as-code artefacts (ARM/Bicep templates, Terraform modules, Azure DevOps pipelines with security gates).
- Support the development and testing of incident response playbooks and contribute to tabletop exercises.
- Provide guidance and uplift to colleagues on security best practice within the Microsoft ecosystem.
Requirements
We are looking for a skilled and enthusiastic Cyber Security Engineer to join our growing Cyber Security practice. The ideal candidate will have previous experience working in an in-house security engineering role working collaborating within Technology Service and Product Engineering teams to build and maintain a strong security posture; mitigating security risks and fostering a proactive culture., * Proficiency with security tooling, analytics tuning and reporting (e.g. Anti-virus, Microsoft Sentinel SIEM, endpoint XDR, cloud & network) and confidence in writing SIEM queries.
- Demonstrable hands-on experience with Microsoft Sentinel, including KQL, analytics rules, and SOAR playbooks.
- Strong working knowledge of the Microsoft Defender suite (Endpoint, Identity, Office 365, Cloud Apps, Defender for Cloud).
- Solid understanding of Azure security architecture: Entra ID, RBAC, conditional access, Azure networking, and cloud security posture.
- Experience with LAN, WAN, Wireless and Firewall technologies
- Experience working with Privileged Access Management and application control solutions.
- Experience with vulnerability management in a Microsoft environment.
- Ability to investigate and respond to security incidents, including log analysis and forensic triage.
- Familiarity with security frameworks relevant to a UK healthcare organisation, such as NIST CSF, CIS Controls, or Cyber Essentials Plus.
- Good written and verbal communication skills - able to convey technical risk clearly to non-technical stakeholders.
Benefits & conditions
We want you to love coming to work, feeling healthy, happy and valued. That's why we've developed a benefits package with you in mind. Here, you can choose from a range of fitness, lifestyle, health and fitness wellbeing rewards, such as free gym membership, health assessments, retail discounts and pension options.