Cyber Security Engineer

Cyber Security Engineer – London (Hybrid)

If you’re passionate about threat detection, incident response, and building modern security capabilities, this role puts you right at the centre of a growing cyber function within a leading financial services environment.

We’re looking for a hands‑on Cyber Security Engineer who can strengthen our detection, response, and monitoring capabilities while helping shape the future of our security tooling, processes, and controls.

• Enhancing and operating core security capabilities including SIEM, MDR, security monitoring, and threat detection tooling
• Supporting Security Incident Response (SIR) activities, including triage, investigation, containment, and recovery
• Contributing to DFIR workflows and helping mature incident playbooks and response processes
• Working with technology and business teams as the go‑to specialist for security controls, tooling, and best practice
• Designing, implementing, and maintaining security solutions across endpoint, identity, network, and cloud environments
• Improving key security processes including vulnerability management, patch governance, IAM, endpoint security, and network security
• Developing and maintaining security policies, SOPs, and incident response playbooks
• Feeding Threat Intelligence / CTI insights into monitoring, detection logic, and response processes
• Supporting projects that uplift enterprise security capabilities (e.g., log aggregation, IAM enhancements, EDR improvements)
• Providing security input into change management, asset management, third‑party assessments, and technology acquisition

• 2+ years in a Cyber Security Engineer, Analyst, or similar hands‑on security role
• Experience in financial services or another regulated environment
• Strong technical exposure to security tooling: SIEM, EDR, MDR, vulnerability scanners, patch management, CASB, DLP, penetration testing tools
• Solid understanding of TCP/IP, network protocols, and packet analysis
• Ability to assess the security posture of operating systems, cloud services, and network appliances
• Experience working with cross‑functional teams and communicating clearly with technical and non‑technical stakeholders
• Certifications such as CISSP, CEH, CISM, or similar
• Knowledge of OS hardening and CIS Benchmarks
• Familiarity with ISO
  27001, NIST, PCI DSS, GDPR, Cyber Essentials
• Experience with IT audit processes and risk assessments
• Exposure to Threat Intelligence platforms, DFIR tooling, or SIR frameworks

• A proactive, curious security professional who enjoys solving problems and improving controls
• Comfortable explaining technical concepts to non‑technical audiences
• Strong communicator with a collaborative mindset
• Someone who thrives in a fast‑moving, regulated environment and takes pride in protecting customer assets

This is a great opportunity to influence and mature a security function while working with modern tooling and a supportive team. If you’re ready to take the next step in your cyber career, we’d love to speak with you.