Business Unit: Chief Data Office Salary range: £40,800 to £51,000 per annum Location: UK hybrid – with travel to one of our UK Virgin Money hubs when required Contract type : Permanent Our Team We’re at our best when we have something to drive us forward, a belief that underlines who we are and what we do. Our Purpose: We want to make banking fairer and more rewarding – and that idea starts with every single one of us here at Virgin Money. Wanting to provide a simply brilliant experience? Excited to start your next adventure? You might have just found it. The Security Engineering team is part of Technical Operations and Cyber Security within Virgin Money and we maintain the Bank’s Security tools & applications. Our aim of Security Engineering is to cultivate unwavering trust in our products and services by engineering resilient security solutions that protect our users and customers from evolving threats. We strive to be the invisible shield, working tirelessly to ensure their data and digital experiences remain safe, secure, and uninterrupted. By joining our team, you will become a vital part of this mission, contributing your unique skills and perspectives to building a safer digital future. What you’ll be doing Proactively use security engineering tools to identify and mitigate security risks based on an in-depth understanding of network protocols, endpoint security and vulnerabilities. Develop and implement security measures using specialised tools based on Cyber security best practices. Working alongside project teams and other stakeholders to ensure solutions meet the strategic needs of Virgin Money. Helping to design, roll out and manage Microsoft Security technologies, with a particular focus on Defender for Endpoint and Defender for Servers. Support and build endpoint & server security capabilities, including deciding on the granularities of controls from a threat-led perspective (e.g., application level, environment level, network level, network policies, mapping attack paths, and building mitigations). Contribute significantly to team culture and the ongoing evolution of security engineering practices. Implement automation to remove repetitive manual tasks. We need you to have Hands-on experience with Microsoft Security technologies. For example, Defender for Endpoint, Defender for Servers and Defender XDR, including deployment, policy configuration, and incident response workflows. Familiarity with deploying Infrastructure as Code and using CI/CD technologies, such as Azure DevOps. Hands-on experience implementing Microsoft Defender for Endpoint and Defender for Servers in cloud and hybrid environments. Previous experience working with security best practices – e.g. Zero trust, defence in depth, least privilege, security hardening and compliance. Experience in applying zero-trust principles to secure large-scale IT infrastructures, demonstrated by successful deployments within a corporate setting. It’s a bonus if you have but not essential Experience as a Cyber Security Engineer, Cyber Security Analyst with an interest in becoming a Cyber Security Engineer. Experience with Terraform, Python, Javascript/Node.js, PowerShell or Bash Knowledge of infrastructure and application monitoring, such as Icinga, Elastic Stack or Dynatrace. Endpoint Security certifications (especially Microsoft centric) would be advantageous. Proven ability to design and deploy endpoint/server security solutions. Red Hot Rewards Generous holidays - 38.5 days annual leave (including bank holidays and prorated if part-time) plus the option to buy more. Up to five extra paid well-being days per year. 20 weeks paid, gender-neutral family leave (52 weeks in total) for expectant parents and those looking to adopt. Market-leading pension. Free private medical cover, income protection and life assurance. Flexible benefits include Cycle to Work, wellness and health assessments, and critical illness. And there's no waiting around, you'll enjoy these benefits from day one. If we’re lucky to receive a lot of interest, we may close the advert early, please ensure to submit your applications as soon as possible. We're all about helping you Live a Life More Virgin, so happy to talk flexible working with you. Say hello to Virgin Money Virgin Money is so much more than just a bank. As part of the Nationwide group, together we're the UK's first full-service mutual bank serving millions of retail and business customers and all driven by our purpose ; Banking but fairer, more rewarding and for the good of society. With us, you’ll be part of an organisation uniquely positioned to make a difference to the lives of customers, communities and broader society and embark on a collaborative, customer obsessed, and fun-filled career journey. Embrace the weekdays, enjoy fantastic perks, and make a meaningful positive difference. Time to discover what it means to be part of the first mutual full-service banking provider. Be yourself at Virgin Money At Virgin Money, we celebrate everyone. We have fun, think big, and relentlessly include each other, all in pursuit of our purpose: Banking – but fairer, more rewarding, and for the good of society. We’re committed to creating an inclusive culture where colleagues feel safe and inspired to contribute, speak up and be heard. As a Disability Confident Leader, we're committed to removing any obstacles to inclusion. If you need any reasonable adjustments or support making your application, contact our Talent Acquisition team careers@virginmoney.com It’s important to note that there may be occasions where it’s not possible to interview all candidates declaring a disability who meet the essential criteria for the job. In certain recruitment situations such as receiving a high-volume of applications, we may need to limit the overall numbers of interviews offered to both disabled and non-disabled applicants. Now the legal bit Although some of our roles allow you to be based anywhere in the UK, we'll need you to confirm you have the right to work in the UK. If you're successful in securing a role with us, there are some checks you need to complete before starting. These include credit and criminal record checks and three years' worth of satisfactory references. If the role is part of the Senior Manager Regime and Certification Regime, it requires enhanced pre-employment checks – we'll ask for six years of regulatory references, and once in the role, you'll be subject to periodic employment checks.