What will you be doing?
The PayPoint Group is looking to expand its Information Security team, and we have a new role for a Cyber Security Engineer.
You will be responsible for creating, implementing, and maintaining security content such as rules, playbooks, dashboards, and reports for our security systems. This role requires a strong understanding of security best practices, and experience working with enterprise security platforms within a SOC environment. You will join the Information Security team and use your experience and technical skills and work closely with your team members.
This role is Hybrid with a requirement to be onsite at least once a week in Welwyn Garden City.
Key responsibilities
Security Engineering
You’ll develop and refine detection rules, alerts, and automation playbooks using Microsoft security platforms to identify threats and reduce false positives. Your role will also involve managing log ingestion, ensuring full coverage of critical assets, and driving the integration of automation and AI to enhance our security operations.
Security Analysis
Monitor and analyse security alerts to detect threats, using behavioural analytics and threat intelligence to uncover anomalies. You’ll also conduct proactive threat hunting and maintain detailed risk profiles for users, systems, and applications to support a strong security posture.
Endpoint Detection and Response (EDR)
You’ll manage and maintain endpoint security and compliance, performing daily health checks and resolving any issues that arise. Working closely with Infrastructure teams, you’ll ensure endpoint configurations meet organisational standards. You’ll also enhance threat-hunting capabilities by integrating threat intelligence and correlating EDR data with SIEM and XDR platforms for deeper insights.
Data Loss Prevention (DLP)
In this part of the role, you’ll implement and configure DLP solutions, define classification policies, and monitor for potential data leaks. Your work will help protect sensitive information and prevent unauthorised data exfiltration across the organisation.
Incident Response
You will form a key part of the incident response team when security incidents occur—analysing threats, assessing business impact, and be part of the response lifecycle from containment to recovery. You’ll document incidents thoroughly, follow established playbooks, and help improve them over time. Automation will be key to streamlining investigations and enriching threat intelligence.
Testing and Validation
You’ll take part in cyber crisis simulations, penetration testing, and table-top exercises to ensure our defences are robust and response plans are effective.
Business Context and Risk Management
Understanding the business value chain is essential. You’ll map critical assets, conduct risk assessments, and align security efforts with business priorities to protect what matters most.
Technology Leadership
You’ll drive continuous improvement across our security platforms, optimise performance, and bring technical expertise to the table. Familiarity with SaaS-based budgeting and licensing models will also be valuable in this role.
What we would like from you
* Duration: 2-4 years of experience in a SOC or cybersecurity-related role.
* Technologies: Microsoft Azure, Entra ID, Intune, Azure Arc, Defender XDR, EDR, Azure Sentinel, Cloudflare, and Mimecast.
* IT environments: Including Windows, Linux, VMware, and AKS.
* Security Tools: Proficiency with security tools including WAF, proxy, DNS, IDS, firewalls, anti-virus, data loss prevention, idP, IAM, PAM, and MFA.
Our benefits if you decide to join us:
* Holiday purchase scheme, with 25 days holiday plus bank holidays as standard.
* On-site gym at our office (Free), and nationwide corporate rate gym membership
* Online benefits portal where you can access lots of deals, discounts - for example of shopping or holidays
* Contributory company pension scheme
* Progression and Development
* Private medical insurance
* Electric Car Scheme
* Life assurance of 3 x annual gross salary, with the option to purchase additional cover
* You’re also able to purchase a range of benefits at a discounted rate including, critical illness cover, bicycles via our Cycle2Work scheme, dental insurance and TasteCard dining discount card
As a disability-confident committed company, we have a passion for championing equality. We welcome all colleagues into a work environment where success is attainable for everyone, regardless of disability, age, race, religion, gender identity, or sexual orientation. We are committed to ensuring that everyone has equal access to growth and opportunities in our workplace.