Cyber Security Engineer

Cyber Security Engineer

Permanent \| £70-80k

Location: Surrey (Hybrid – 3 days on site)

We are recruiting an experienced Cyber Security Engineer to join a global organisation committed to strengthening and evolving its cybersecurity capabilities. This role will focus on identifying, assessing and mitigating cyber threats across enterprise systems while helping to shape and improve the organisation’s overall security posture.

Key Responsibilities

Cybersecurity Operations \& Threat Management

• Conduct ongoing threat assessments across operational systems and infrastructure
• Identify vulnerabilities, threat vectors and areas of security risk
• Design and implement security mitigations and remediation strategies
• Monitor emerging cyber threats and recommend appropriate defensive measures
• Support automated threat monitoring, incident detection and response capabilities
• Develop and maintain cybersecurity playbooks and incident response procedures
• Coordinate with third-party security providers during security incidents and testing activities

Security Governance \& Risk Management

• Support cybersecurity risk management and compliance initiatives
• Contribute to security architecture reviews and secure system design discussions
• Assess third-party and supply chain cybersecurity risks
• Support vulnerability management, penetration testing and security review activities
• Develop and report on security metrics and KPIs to demonstrate programme effectiveness
• Stay informed of relevant legal, regulatory and industry cybersecurity requirements

Security Improvement \& Collaboration

• Contribute to security awareness training and internal security initiatives
• Support red team/blue team exercises and resilience testing
• Assist with business continuity and disaster recovery planning from a cybersecurity perspective
• Work collaboratively with infrastructure, architecture and operational teams to strengthen security practices
• Communicate complex security concepts effectively to both technical and non-technical stakeholders

Required Experience

• Minimum 5 years’ experience in cybersecurity or information security roles
• Strong understanding of network protocols, operating systems and enterprise security technologies
• Experience implementing and managing SIEM and SOAR platforms
• Knowledge of cybersecurity frameworks such as NIST, ISO27001, CIS benchmarks and Cyber Essentials
• Experience with threat intelligence frameworks such as MITRE ATT\&CK and Cyber Kill Chain
• Familiarity with Data Loss Prevention technologies and Microsoft 365 security tooling
• Exposure to DevSecOps practices and cloud security principles
• Strong troubleshooting, analytical and problem-solving skills
• Ability to manage multiple priorities within a collaborative environment

Technical Environment

Experience with some or all of the following technologies would be highly beneficial:

• Qualys, Microsoft Defender, Splunk, SolarWinds, Kubernetes, PowerShell, Python, Azure, AWS, Windows Server, Linux, New Relic, HashiCorp, Zerto and Jira.
• Experience with AI-driven threat detection and response platforms would also be advantageous.

Qualifications

• CISSP certification preferred
• Equivalent certifications such as CISM, CEH or GIAC also considered
• Relevant cybersecurity or information security qualifications beneficial

What’s on Offer

• Competitive salary and benefits package
• Hybrid working model based in Surrey
• Opportunity to work within a global enterprise environment
• Exposure to modern cybersecurity technologies and initiatives
• Collaborative and supportive working culture
• Ongoing professional development and certification opportunities

If you are passionate about cybersecurity, threat management and strengthening enterprise security capabilities, we would love to hear from you.