Senior Cyber Security Engineer
Apply for the Senior Cyber Security Engineer role at Aberdeen.
At Aberdeen, our ambition is to be the UK’s leading Wealth & Investments group.
About Aberdeen
Aberdeen comprises three businesses:
* Interactive Investor (ii) – the UK’s second largest direct-to-consumer investment platform, enabling individuals in the UK to plan, save, and invest in the way that works for them.
* Our Adviser business provides financial planning solutions and technology for UK financial advisers, enabling them to create value for their customers.
* Our Investments business is a specialist asset manager that focuses on areas where we have both strength and scale to capitalise on the key themes shaping the market, through either public markets or alternative asset classes.
Department & Opportunity
Within the Security, Resilience and Protection department, the security of our customer assets and data is paramount. An experienced and ambitious Security Engineer is needed.
Role Overview
Reporting to the Cyber Security Engineering Manager, you will design, implement and maintain next-generation detection and log management platforms, sitting at the intersection of SIEM engineering, cloud security, and advanced log pipeline management. You will support Security Data & Analytics, Security Automation, Incident Response and Threat Detection, and work closely with the Cyber Security Operations Centre, broader security functions, specialist 3rd party suppliers, and our global IT and business teams.
Key Responsibilities
* Security platform optimisation across endpoint, network, cloud and logging technologies.
* Build security orchestration automation and response playbooks and integrations.
* Onboard data and develop detection logic and analytics for Security Data & Analytics.
* Develop interface definitions and security guidelines for SOC architecture.
* Support incident response as part of the Cyber Security Incident Response Team.
Candidate Profile
You will need demonstrable experience in cyber security engineering or aligned functions, including security platform optimisation and log ingestion. A deep understanding of SIEM, SOAR tools, AV, CSPM, EDR/XDR, and a passion for emerging threats and technologies are ideal.
SIEM Engineering & Operations
* Develop advanced detection rules, correlation searches, and playbooks to improve threat detection and response.
* Perform log source onboarding, parsing, and data normalisation across various data types.
* Design, develop, configure, and maintain SIEM alerts to support SOC Operations.
Log Management & Data Engineering
* Engineer and maintain log pipelines using Cribl to optimise ingestion, filtering, routing and replay.
* Work confidently on intelligent log transformation, data enrichment and routing strategies.
* Architect scalable solutions for log archival, data rehydration and compliance-driven retention.
Cloud Security
* Leverage Azure-native security services such as Microsoft Defender XDR, Defender for Cloud, Azure Monitor and Azure AD.
* Implement security monitoring, alerting and automation across Azure logging and IaaS/PaaS/SaaS workloads.
* Integrate Azure EventHubs, Log Analytics and employ Kusto Query Language (KQL) and Splunk Processing Language (SPL) to optimise data pipelines and detection engineering.
Benefits
We offer 40 days’ annual leave, a 16% employer pension contribution, discretionary performance-based bonus, private healthcare and a range of flexible benefits including gym discounts, season ticket loans and access to an employee discount portal.
Diversity & Inclusion
We are proud to be a Disability Confident Committed employer. We support a culture that values meritocracy, fairness and transparency and welcomes enquiries from everyone.
Job Details
* Seniority level: Mid-Senior level
* Employment type: Full-time
* Job function: Information Technology
#J-18808-Ljbffr