Pepper Advantage is one of the leading specialist loan servicing companies in the UK and we are currently looking for a Senior Security Engineer to join our Uxbridge, London office.
You will have a proven background in a senior technical security role within a hybrid cloud environment, with strong experience across Microsoft Defender, Azure security controls, Conditional Access, Intune, and M365 security.
This is a hybrid role, with the expectation of a 2-3 days per week office attendance following a period of office base training.
Your responsibilities will include:
* Acting as the technical escalation point for advanced security incidents and investigations.
* Analysing signals from Defender for Endpoint, Identity, Cloud Apps, and Azure Security Centre.
* Leading root-cause analysis and produce actionable remediation plans.
* Improving detection rules, alert tuning, and automation workflows
* Maintaining and optimising Conditional Access, MFA, device compliance, and identity lifecycle controls.
* Implementing Zero Trust principles across identity, device, and application layers.
* Supporting privilege management and governance (PIM, least privilege, access reviews).
* Strengthening security posture of Intune, SCCM, and Windows endpoints (baselines, policies, patches).
* Driving configuration hardening across servers, Azure resources, and M365 workloads.
* Enhancing vulnerability visibility and remediation workflows across the estate.
* Providing vulnerability reporting to DoIT&S and HoIT
* Improving and maintaining Azure security controls (NSGs, ASR, Defender plans, RBAC, encryption).
* Working closely with network engineering on Palo Alto firewalls, VPNs, inspection policies, and threat signatures.
* Ensuring secure configuration of Meraki access layers and wireless environments.
* Assisting with internal/external audits, evidence gathering, and compliance initiatives.
* Maintaining documentation for security policies, standards, and operating procedures.
* Contributing to risk reviews, technical assessments, and mitigation plans.
* Leading security engineering workstreams within major projects (migrations, upgrades, expansions).
* Identifying opportunities for security automation using PowerShell, Graph API, and Azure-native tools.
* Recommending improvements to overall architecture, resiliency, and alignment with best-practice frameworks.
Essential skills:
* Proven background in a senior technical security role within a hybrid cloud environment.
* Strong experience across Microsoft Defender, Azure security controls, Conditional Access, Intune, and M365 security.
* Deep knowledge of Active Directory / Entra ID security hardening.
* Hands‑on experience with Palo Alto firewalls, security profiles, and VPN technologies.
* Strong PowerShell scripting and automation capabilities.
* Ability to analyse complex incidents, perform forensics, and drive technical remediation.
* Strong grasp of modern security principles: Zero Trust, least privilege, hardening baselines, and identity‑first security.
* Exposure to SIEM/XDR tooling (Sentinel, Splunk, etc.).
* Experience with vulnerability management tools (Tenable, Qualys, Defender TVM).
* Understanding of CIS benchmarks, NIST, ISO 27001, or SOC2 frameworks.
* Familiarity with Azure Automation, Logic Apps, or advanced conditional access patterns.
* Experience with PKI, certificates, and secure configuration of cloud applications
* Salary range of £67k - £74k per annum;
* Private medical insurance, life insurance and eye care contribution;
* Salary Sacrifice Pension matched up to 8%;
* 25 days holiday per annum + bank holidays;
* EAP;
* Payroll giving;
About Pepper Advantage
The UK arm of Pepper Advantage was established in 2013, and today we’re one of the most successful and dynamic loan‑servicing businesses throughout the four home nations. With offices in London and the North of England, Pepper Advantage UK employs over 360 people and has approximately US$25 billion in assets under management. Key sectors include commercial and residential mortgages, including prime, near‑prime and non‑conforming, and SME loans.
#J-18808-Ljbffr