Salary: £75,000 – 90,000 per year
Requirements
- We are looking for 5+ years of experience in Cyber Security Engineering, Security Operations, or Detection Engineering.
- We need a strong understanding of cloud security and modern enterprise environments.
- We require hands‑on experience with SIEM, EDR/XDR, and incident response workflows.
- We value experience with scripting or automation using Python, PowerShell, or similar tools.
- We are looking for knowledge of security frameworks such as NIST, ISO 27001, SOC 2, or CIS.
- We want a strong problem‑solving mindset with the ability to work across multiple security domains.
- Experience in regulated or financial environments is beneficial but not essential.
- Desirable certifications include CISSP, CCSP, CEH, or AWS Security Specialty.
Responsibilities
- We design, implement, and improve security controls across cloud and enterprise infrastructure.
- We enhance SIEM, SOAR, and EDR/XDR capabilities, including alerting, tuning, and integrations.
- We build intelligent detection and response workflows.
- We develop automation solutions using scripting and AI‑assisted tooling.
- We lead technical investigations and incident response activities.
- We improve threat visibility and reduce false positives through detection engineering.
- We conduct vulnerability management and remediation initiatives.
- We partner with engineering, infrastructure, and DevOps teams to embed security into operational processes and CI/CD pipelines.
- We perform threat modelling, security reviews, and risk assessments.
- We support compliance and audit initiatives across regulated environments.
- We contribute to security standards, documentation, and operational best practices.
- We monitor emerging threats and recommend improvements to our security posture.
Technologies
- AI
- AWS
- CI/CD
- Cloud
- DevOps
- Support
- PowerShell
- Python
- Security
More
We are a fast-growing, technology‑led financial services business operating in a highly regulated environment, combining the pace and innovation of a modern tech company with the complexity of enterprise‑scale infrastructure. Security is a major investment area for us, with a strong focus on cloud security, cyber resilience, automation, and intelligent threat detection. This is a collaborative team where security is seen as a business enabler, not a blocker. The role is based in London with hybrid working, requiring 4 days onsite and 1 day remote. We offer a high‑impact opportunity within a growing cyber security team, broad technical exposure across cloud, infrastructure, and security operations, strong investment in modern tooling and automation, and a competitive package with long‑term growth opportunities.
#J-18808-Ljbffr…
