Cyber Security Engineer

On site

Ansty, United Kingdom

Full Time

04-03-2025

Share this job:

Score my CV Apply

Job Specifications

Job description: Job Purpose
We're looking for a dynamic Security Engineer to join our OT Programme ensuring the safe and continuous delivery of Cyber Security Services. You'll navigate regulatory compliance and cybersecurity challenges, safeguard our internal processes, and engage with stakeholders to deliver top-notch customer service. You'll drive innovation by identifying and implementing improvements within our cybersecurity and IT teams, regularly updating security configurations to address evolving threats, and generating insightful reports. Your commitment to comprehensive documentation and Health & Safety standards will help protect our colleagues, customers, and stakeholders.
Key Responsibilities
Support the Cyber Incident Response Team (CIRT) in high-priority incidents, root cause analysis, and engineering solutions to enhance response capabilities.
Attend Post Incident Reviews (PIRs) and regular CIRT meetings to provide engineering insights, propose solutions, and implement improvements.
Collaborate with teams to mitigate risks from unpatched vulnerabilities and develop engineering solutions for unpatchable vulnerabilities.
Perform daily operations and maintenance of cybersecurity tools, integrate SIEM with various security platforms, and manage SOAR capabilities to automate incident response.
Analyze logs, create custom alerting rules, and provide expertise in threat management, threat modeling, and developing use cases for improved security monitoring solutions.
Skills and Experience
Qualifications:• Bachelor's degree in Cyber Security, Information Technology, Computer Science, or a related field. • Deep experience in Cyber Security or related fields.• Relevant certifications such as CEH, CompTIA Sec+, CompTIA Network+ or equivalent .
Technical Skills:• Experience with SIEM tools (e.g., Splunk, QRadar, ArcSight) and SOAR platforms.• Proficiency in integrating SIEM tools with various security platforms (Threat Intelligence, vulnerability management, Email Gateway, Entra, Firewalls, etc.).• Strong understanding of log management, analysis, and manual log manipulation.• Ability to develop and maintain custom parsers.• Expertise in creating and maintaining custom alerting rules and tuning them for optimal performance.• Knowledge of threat management, threat modelling, and identifying attack vectors.• Experience in developing engineering solutions for vulnerabilities that cannot be patched.• Experience with all the above with Operational Technology, SCADA and ICS. Understanding of how OT differs from IT, and how the priorities change.• Familiarity with regulatory requirements and compliance standards related to cyber security and the energy sector.

About the Company

We are Cadent, the largest gas distribution network in the UK. With over 6,000 colleagues, working across five gas networks, we keep the energy flowing to 11 million homes and businesses, to keep communities safe, warm and connected. Ambitious, motivated and with a clear roadmap for the future, we want everyone, in every role at Cadent, playing an active part in helping us achieve our vision for the future of gas. We want you to be as committed as we are to keeping the energy flowing for generations to come. We want this ... Know more

Related Jobs

Company Name: Palo Alto Networks
Job Title: Manager, Network Security Customer Success Engineering
Job Description: Our Mission At Palo Alto Networks® everything starts and ends with our mission: Being the cybersecurity partner of choice, protecting our digital way of life. Our vision is a world where each day is safer and more secure than the one before. We are a company built on the foundation of challenging and disrupting the way things are done, and we’re looking for innovators who are as committed to shaping the future of cybersecurity as we are. Who We Are We take our mission of protecting the digital way of life seriously. We are relentless in protecting our customers and we believe that the unique ideas of every member of our team contributes to our collective success. Our values were crowdsourced by employees and are brought to life through each of us everyday - from disruptive innovation and collaboration, to execution. From showing up for each other with integrity to creating an environment where we all feel included. As a member of our team, you will be shaping the future of cybersecurity. We work fast, value ongoing learning, and we respect each employee as a unique individual. Knowing we all have different needs, our development and personal wellbeing programs are designed to give you choice in how you are supported. This includes our FLEXBenefits wellbeing spending account with over 1,000 eligible items selected by employees, our mental and financial health resources, and our personalized learning opportunities - just to name a few! At Palo Alto Networks, we believe in the power of collaboration and value in-person interactions. This is why our employees generally work full time from our office with flexibility offered where needed. This setup fosters casual conversations, problem-solving, and trusted relationships. Our goal is to create an environment where we all win with precision. Job Description Your Career We are looking for a Manager for our Customer Success Engineering team. You will be responsible for managing a team of Customer Success Engineers (CSE) who enable customer success with our award-winning SASE portfolio. In this high growth business, scaling, optimization, dynamic spirit, and sustained performance are the essentials. As the CSE Manager, you will drive the team to in-depth knowledge of the indicators of success, utilizing data and your analytical aptitudes to guide changes, updates, and improvements. In this role, you will also work closely with the customer CISOs, security architects, security engineers, and development operations teams within mid-to-large enterprises, so you'll need to feel confident presenting implementation plans to all ranges of technical ability. Reporting to the EMEAL Sr Manager, Customer Success for the SASE business, in this role you will lead a team of high performance Customer Success Engineers, distributed across EMEA and LATAM. Your Impact Customer escalation management, triage, prioritize issues, negotiate customer priorities, and manage expectations Develop strong relationships with our sales team, customers, partners and internal teams (TAC, Product Management, Engineering) Build and lead a team of Customer Success Engineers Drive performance metrics - CSAT, renewal rate, upsell/cross-sell identification, reference-ability, adoption, consumption, and customer engagement Ensure customers are maximizing their return on investment by implementing and operationalizing Palo Alto Networks solutions to achieve their objectives Assist customers in implementing custom integrations and workflows into their SOC Directly support customer requests, coordinate, and prioritize timely resolutions Develop a comprehensive understanding of business challenges faced by customers and common objectives to appropriately map features and associated business benefits to address their needs Serve as a customer advocate in influencing product roadmap and improvements Ensure that engineers have the resources and processes necessary to confirm success and sustained performance through release cycles Deliver guidance and direction to the team supporting goals and objectives, maximize engineer opportunity to exceed targets Directly provide appropriate technical and soft skills training along with mentoring Ensure that consistent and standard onboarding training programs are used and delivered effectively Set team and individual goals in-line with overall organizational goals Qualifications Your Experience 10+ years of experience in Customer Success Engineering, Services Delivery, Professional Services, or Consulting 1+ years of experience in people management role Strong consulting and project management skills, with shown results working as a trusted advisor to drive business value for customers, including the ability to work well with client teams at different levels of technical and non-technical depth Technical experience in networking or cyber security Industries Public cloud experience is a plus Consistent success working with customer escalations - assessing and communicating customer expectations and negotiating resolutions Flexibility for travel up to 30% Additional Information The Team Our Customer Success team is critical to our success and mission. As part of this team, you enable customer success by providing support to clients after they have purchased our products. Our dedication to our customers doesn’t stop once they sign – it evolves. As threats and technology change, we stay in step to accomplish our mission. You’ll be involved in implementing new products, transitioning from old products to new, and will fix integrations and critical issues as they are raised – in fact, you’ll seek them out to ensure our clients are safely supported. We fix and identify technical problems, with a pointed focus of providing the best customer support in the industry. Our Commitment We’re trailblazers that dream big, take risks, and challenge cybersecurity’s status quo. It’s simple: we can’t accomplish our mission without diverse teams innovating, together. We are committed to providing reasonable accommodations for all qualified individuals with a disability. If you require assistance or accommodation due to a disability or special need, please contact us at accommodations@paloaltonetworks.com. Palo Alto Networks is an equal opportunity employer. We celebrate diversity in our workplace, and all qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or other legally protected characteristics. All your information will be kept confidential according to EEO guidelines. Our Commitment We’re problem solvers that take risks and challenge cybersecurity’s status quo. It’s simple: we can’t accomplish o...

London, United Kingdom

On site

Full Time

26-02-2025

Company Name: IG Group
Job Title: Senior Security Operations Analyst
Job Description: Job Title Senior Security Operations Analyst Job Description As one of Europe's leading investment platforms, security at IG is a top priority and our Security Operations team is looking for a Senior Security Operations Analyst to help further enhance our security framework. Who Are We Hello, we’re IG Group. No, not Instagram – though we're a pretty big deal ourselves. We’re a global, FTSE 250-listed company made up of a collection of progressive fintech brands in the world of online trading and investing. The best part? We’ve snapped up many awards for our top-class platforms, forward-thinking products, and incredible employee experiences. We believe in financial freedom. And our purpose is to help ambitious people achieve it. Around 400,000 people use our groundbreaking technology and forward-thinking platforms to trade the financial products they know and love. Did we mention we have offices in 18 countries? Yes, when you join IG Group, you'll have the chance to work across multiple brands with people all over the world. We work in cross-functional teams, focused on delivering at pace to improve the experience of traders on our platforms. Your Position Within The Team IG’s Security Operations team (SOC) is responsible for managing security-related events within IG. The team's goals are to ensure that security incidents adversely affecting the business are quickly diagnosed, workarounds are determined, proper root cause analysis is performed, and actions are taken to prevent the issue from reoccurring. The Security Operations function is vital to the organisation. It ensures that company information and systems are protected from unauthorised access, disruption, modification, or destruction. This is accomplished using various operational security controls, processes, and policies. What You’ll Do Security Monitoring Drive the creation and refinement of security monitoring rules, techniques and processes. Proactively hunt for evidence of threats or compromise using all available tools. Incident Management Investigate and resolve escalated security incidents both independently and by leading a team of SOC colleagues. Ensure the defined playbooks are followed correctly, and accurate logs are made of all actions during incident response. Support and mentor colleagues with best-practice incident management techniques and behaviours. Perform root cause analysis, recommend process improvements, and write final post-incident reports. Project Delivery Take part in the team’s project delivery initiative, rotating between the following roles on a 1-3 monthly schedule: Vulnerability Management – maintain regular scans, interpret results, identify asset owners, track remediation activities and report on the agreed SLAs. Security Controls Administration – maintain availability and functionality of all security controls; implement new and advanced features where available; write technical documentation and manage changes. SIEM Maintenance & Content – maintain the availability of the underlying infrastructure, develop new alerts, field parsers, models and automated playbooks, and integrate new log sources where appropriate. Threat Intelligence & Threat Hunting – provide, develop and integrate external threat intelligence data into the team’s detection capabilities; perform proactive threat hunts based on working hypotheses, and implement subsequent SIEM alerts where required. Purple Team & Scenario Exercises – regularly test the team’s detection capabilities, develop scenario-based training, and organise purple team exercises, both in-house and with third-party providers. Insider Threat – maintain and develop the Data Loss Prevention policies in line with the company’s data classification requirements, and implement exceptions for business-approved procedures where required. Improve the detection and response capabilities of the remaining security controls with a focus on insider threats. Escalation Analyst – support analysts during incident response and take the lead in more complex investigations; validate true positive security incidents, ensuring all playbook actions have been completed reliably with an incident timeline populated, and provide training sessions for other analysts. Reporting & Documentation Assist with the preparation of regular reports and the collection of defined metrics. Take an active role in the creation and continual improvement of SOC process and procedures documentation, as well as the refinement of manual and automated workflows and playbooks. Other Responsibilities Aligned With a Senior Analyst Position Lead the training and development of other SOC team members, sharing knowledge and demonstrating best practices by example. Lead internal projects to improve the effective operation of the SOC, such as contrasting competing tools or technologies, re-designing existing security controls and assessing the impact of changes to IG’s IT environment. Take an active role in external projects as the security SME ensuring that operational security issues are considered and implemented appropriately. The Way We Work We also think hard about our ways of working as a company. At IG Group, we’ve set out five target behaviours that we expect everyone to strive to achieve in all that we do: Lead & Inspire: Leading teams in a way that drives trust, alignment, and enthusiasm; Think Big: We focus on the problems that most move the needle of commercial outcomes; Champion the client: We always keep the client's needs front of mind and deliver as much value for them in all that we do; Deliver at pace: We work to ensure nothing stands in the way of fast delivery of sustainable growth for our business; and Raise the bar: We raise the bar by taking ownership of outcomes and being accountable for making things better across IG. What You’ll Need This is an experienced role, and therefore candidates are expected to convincingly satisfy most of the listed requirements. Successful candidates will demonstrate an independent and self-motivated approach to continuing the development of their skills and knowledge. 4 - 10 years of experience within operational IT or security roles, with a minimum of 2 years SOC. Deep familiarity with one or more SIEM tools is. A strong understanding of technical IT concepts is required, including: Windows and Linux operating systems and system administration Networking, including TCP/IP and other common protocols Microsoft Active Directory Command line interfaces and scripting Understand the role, benefits/downsides, and standard use cases of technical security products, such as firewalls, anti-virus, web proxies, SIEM, IDS/IPS, DLP, and EDR. Familiarity with vulnerability scanning and penetration testing tools and techniques. Qualifications A university degree in one of the following fields is preferred (but not required): Cyber / Information Security, Digital Forensics, Ethical Hacking Computer Science, Software De...

London, United Kingdom

On site

Full Time

04-03-2025

Company Name: Amazon Web Services (AWS)
Job Title: Security Engineer Summer Internship – 2025 (UK)
Job Description: Description Amazon internships are full-time positions, and interns should expect to work Monday-Friday, up to 40 hours per week typically between 8am-5pm. Specific team norms around working hours will be communicated by your manager. Interns should not have conflicts such as classes or other employment during the Amazon work-day. Start dates for our internships in this posting include the following period: Summer (Starts May/June 2025) Would you like to assess risk and help deliver countermeasures that protect customer data and prevent attempts to infiltrate company systems? Are you passionate about solving problems in an online world where threats grow ever more sophisticated? You will have the opportunity to impact the evolution of Amazon technology as well as lead mission critical projects early in your career. If this describes you, consider joining us as an security engineer intern! Amazon interns have the opportunity to work alongside the industry’s brightest engineers who innovate every day on behalf of our customers. Key job responsibilities As a Security Engineer Intern, You Will/may Collaborate with experienced Amazonians to create and execute security controls, defenses, and countermeasures to intercept and prevent internal and/or external attacks Develop, test, review, debug, or deploy code that supports security protocols Work effectively with your team to identify security problems and improve the security aspects of their service(s) Assess risks that could affect the confidentiality, integrity, or availability of data, systems, or services Resolve security events, incidents, or conduct security assessments using penetration tests, ethical hacking tools, or risk mitigation methodologies to evaluate vulnerabilities Classify, store, and handle data in accordance with policy or best practices Troubleshoot, research the root cause of, and resolve security or risk issues with guidance A day in the life Our internship program provides hands-on learning and building experiences for students who are interested in a career in security engineering. In addition to working on an impactful project, you will have the opportunity to engage with Amazonians for both personal and professional development, expand your network, and participate in fun activities with other interns throughout the summer. No matter the location of your internship, we give you the tools to own your internship and learn in a real-world setting. Basic Qualifications Experience scripting with Python, Perl, Bash or PowerShell Experience with at least one modern language such as Java, Python, C++, or C# including object-oriented design Experience in one or more of the following domains: access- control system and methodology, network security, application- and system-development security, security architecture and models, cryptography, and operations security Are 18 years of age or older Work 40 hours/week minimum and commit to 12 week internship maximum Currently working towards a Bachelor’s Degree in Computer Science, Computer Engineering, Cybersecurity, or other equivalent discipline, with an expected conferral date between October 2025 – December 2028. Preferred Qualifications Experience with tools such as Wireshark, encryption software, Snort, Sguil, Suricata, Kibana, Metasploit, Nmap, OpenSSL, or Setkey Experience with AWS Services including EC2, Lambda, S3, DynamoDB, SQS Previous technical internship(s) and/or co-op(s) in one or more of the following domains: access-control system and methodology, network security, application- and system-development security, security architecture and models, cryptography, and operations security. Enrolled in a Master’s Degree in Computer Science, Computer Engineering, Cybersecurity, or other equivalent discipline, with an expected conferral date between October 2025 – December 2028. Amazon is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. We make recruiting decisions based on your experience and skills. We value your passion to discover, invent, simplify and build. Protecting your privacy and the security of your data is a longstanding top priority for Amazon. Please consult our Privacy Notice (https://www.amazon.jobs/en/privacy_page) to know more about how we collect, use and transfer the personal data of our candidates. Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit https://amazon.jobs/content/en/how-we-hire/accommodations for more information. If the country/region you’re applying in isn’t listed, please contact your Recruiting Partner. Company - AWS EMEA SARL (UK Branch) - F93 Job ID: A2911815

London, United Kingdom

On site

Full Time

26-02-2025

Company Name: LMA Recruitment Formerly Ball & Hoolahan
Job Title: Information Security Manager
Job Description: Information Security Lead London | Full-time Salary circa 100k Perm or Freelance Do you have experience in information security within the energy, mining, chemicals or process manufacturing sectors? We are looking for someone with in-depth knowledge of cybersecurity frameworks to lead the creation, review and enforcement of information security policies, procedures and guidelines tailored to the production and chemical sectors. Key Responsibilities: Develop and implement information security strategy ensuring alignment with business objectives, regulatory requirements and industry best practice. Conduct regular risk assessments to identify and address potential security risks Oversee the security measures for IT infrastructure, individual control systems (ICS) and operational technology (OT) to meet security needs Administer security software solutions including Endpoint Detection and Response (EDR) to protect against cyber threats Ensure compliance with industry-specific regulations (eg GDPR, ISO 27001 industry standards) and company internal policies Ensure integration of security protocol across various departments including IT, HR, Finance and Operations promoting a unified and cohesive security strategy What We’re Looking For: Solid experience in Information Security, Cybersecurity, IT or related field In-depth knowledge of cybersecurity frameworks, risk management practices, and regulatory requirements (e.g., NIST, ISO 27001, GDPR). Experience managing Microsoft Office 365 security & compliance administration panels Fluent in English (Turkish preferred) and open to international travel. Certifications (PMP, PRINCE2, ITIL) and experience in Agile/Lean methodologies are a plus Relevant cybersecurity certifications (e.g., CISSP, CISM, CISA, CRISC, or GIAC). #energy #chemical #mining #sustainability #transformation #digital #automotive

London, United Kingdom

Hybrid

Full Time

04-03-2025