Who are we?
The HBP Group is the number one choice for many businesses across the UK looking for reliable, award-winning business technology. Providing a range of services including local IT Support, Accounts software and EPOS solutions. We offer our customers a range of the best market leading products and services to streamline complex business processes and increase efficiency. We have 3 offices including our head office in Scunthorpe, an office in Hull and another office in Peterborough.
The Role
As a Cyber Security Specialist, you'll own our Cyber Essentials work stream, delivering Cyber Essentials and Cyber Essentials + projects to our customers. A meticulous attitude towards high quality security hygiene and best practices, with exceptional cyber security knowledge you'll excel in this role.
When you're not managing our Cyber Essentials projects, you'll deliver secure by design Microsoft infrastructure and cloud solutions to our customers, grounded in our technical baselines, Microsoft security best practice, and the Cyber Essentials control set.
You'll also lead implementations across Microsoft 365, Windows Server, Azure and virtual networking. Placing identity, endpoint protection, secure configuration, patching, logging, and incident readiness at the heart of every deployment.
What You'll Work On
Key responsibilities (security led)
1) Secure solution design & delivery (Microsoft 365 – Modern Work)
* Lead deployments of Microsoft infrastructure and cloud solutions, ensuring security is designed-in, not bolted on.
* Produce and maintain secure build documentation: HLD/LLD, as built packs, security baselines, rollback plans.
* Implement and optimise:
o Entra ID (Azure AD), MFA/Conditional Access, identity governance
o Intune / Endpoint Manager device compliance & hardening
o Microsoft Defender (Endpoint, Office 365, Identity, Cloud Apps)
o Secure email posture (anti-phishing, SPF/DKIM/DMARC, safe links/attachments)
o Azure security controls (where applicable): RBAC, PIM, Key Vault, policy/guardrails
2) Cyber Essentials (CE) aligned delivery & assurance
You'll align customer environments to the Cyber Essentials framework, ensuring the controls are practically implemented and evidenced:
* Secure configuration (servers, endpoints, Microsoft 365)
* User access control (least privilege, role-based access, joiners/movers/leavers)
* Malware protection (Defender and layered controls)
* Security update management (patching cadence + reporting)
* Firewalls & boundary controls (including VPN where applicable)
Where the customer requires it, support readiness for CE Plus style evidence gathering (device samples, screenshots, policy evidence, implementation proof).
3) Customer engagement & enablement
* Run technical workshops, translate risk into plain English, and guide customers through secure adoption.
* Provide security-focused handover/training sessions for IT admins and end users.
4) Project transition, quality & continuous improvement
* Own QA & renewals for your implementations: validation checklists, control testing, documented outcomes.
* Ensure clean handover to project management and support desk functions, including relevant operational security guidance.
* Feed back improvements into HBP baselines using lessons learned and emerging Microsoft security features.
Typical Projects
You'll be hands-on with work such as:
* Deliver multiple project baselines (typically 10–25 days) across varied customer environments, often 50–100 users, multi-site and VPN enabled.
* Work with project managers to plan resources, milestones, risks and security dependencies.
* Provide clear customer updates; challenge unachievable timelines with constructive options.
* Produce high-quality documentation and communicate effectively to technical and non-technical stakeholders (including C-suite).
* Mentor junior engineers and contribute to onboarding.
Measurable Outcomes
* Projects delivered on time, within budget, with positive customer effort feedback
* Security baselines applied consistently (with evidence) and aligned to Cyber Essentials.
* Clear, complete handover packs including operational security guidance and monitoring recommendations.
* Continuous development: new Microsoft Security capabilities adopted into delivery standards.
Qualifications & Certifications
We're looking for candidates with a mix of formal qualifications and hands-on experience. Ideal certifications include:
* Microsoft 365 Certified: Endpoint Administrator Associate (MD-102)
* CompTIA A+ and Network+
* Azure Administrator Associate (AZ-104) or SC-300
* Cyber Essentials Assessor Qualifications
Essential experience & skills
* 2+ years in IT consultancy / technical delivery (cloud/infrastructure) with demonstrable security responsibility
* Strong Microsoft 365 and Windows Server delivery background (design + implementation).
* Good networking fundamentals (routing/switching, firewall concepts, VPNs).
* Confident documentation and stakeholder communication.
* Practical understanding of Cyber Essentials controls and how to implement them in Windows/ MacOS.
* Working knowledge of Cyber Security frameworks (CIS/ NIST2/ CE, etc).
Technical focus areas
* Identity & access: Entra ID, MFA, Conditional Access, RBAC, least privilege
* Endpoint security: Intune, Defender for Endpoint, device compliance, hardening
* Email & collaboration security: Defender for O365, anti-phishing, SPF/DKIM/DMARC
* Cloud security: Microsoft Defender for Cloud/ Purview Suite / Cloud Apps (where applicable), Azure guardrails
* Security operations readiness: logging, alerting, audit trails, incident runbooks
* Backup & DR: secure backups, immutability where possible, recovery testing
* Documentation: clear auditable customer security deviation tracking.
Why work for us?
Here at the HBP Group we are passionate about our business and our customers, and believe our people are our most asset. Driven by our commitment to creating a great place to work for all our staff, we are always looking for ways to improve our employee experience.
We are committed to being a truly great place to work. As an accredited Living Wage Foundation employer, we proudly pay the Real Living Wage and are working towards earning Best Companies 3 Star "World Class employer to work for" accreditation in the future.
That's why it's a great time to join The HBP Group… As we continue our successful journey with exciting and achievable growth plans, we want to focus not only on our overall commercial objectives but creating a great working environment for our staff to thrive. That's why we are looking for people who are passionate, trustworthy, and forward-thinking to join our team.
H
ere are some of the fantastic benefits we offer and our people love:
* 36 days of holiday (28 days plus bank holidays), pro-rated for part-time employees.
* Option to sell back holiday *
* Salary Sacrifice Pension Scheme and a range of additional salary sacrifice options, including Electric/Hybrid Car, Bike to Work, and Childcare schemes*.
* Enhanced family-friendly leave, including Maternity Pay*, Paternity Pay*, and our compassionate "Time to Say Goodbye" bereavement leave".
* Mid Year and Year End Appreciation Parties, themed office days (yes, even Pancake Day), and fundraising events supporting our chosen charities.
* A friendly, inclusive working environment ... we genuinely are a great bunch.
* Free lunches and summer BBQs.
* Quarterly Rise & Shine breakfast events to bring the team together.
* Casual business dress code, with the option to choose from our free workwear wardrobe.
* Christmas Thank You Bonus*.
* Structured support and guidance from day one, including tailored training plans to help you succeed.
* On site parking for convenience.
* Access to wellness activities to support your wellbeing.
*Eligibility criteria or length of service requirements apply.
Salary of between £45,000 to £50,000 per annum (depending on experience).
We reserve the right depending on application numbers to close or extend the closing dates for positions; we would therefore recommend an early application.
Due to the high number of applications, we thank all applicants for their interest; however, only those selected for an interview will be contacted.