Cyber Security Engineer - AVP
Investment Bank
London
One of our clients - a leading investment bank - is seeking an experienced Security Engineer to join its Cyber Security team.
This role will focus on strengthening security monitoring, detection engineering, automation, and proactive threat mitigation across a complex enterprise environment.
Working closely with security operations, infrastructure, and engineering teams, you will play a key role in enhancing detection capabilities, improving security controls, and driving automation initiatives across both on-premise and cloud-based platforms.
Responsibilities:
* Design and enhance security monitoring, detection, and response capabilities across enterprise systems and infrastructure
* Develop threat detection rules, threat hunting use cases, and security automation workflows
* Support the ongoing development and optimisation of SIEM and security orchestration platforms
* Assess security risks and provide guidance on appropriate controls for new technologies and projects
* Integrate and onboard new log sources to improve visibility across critical systems and services
* Collaborate with SOC teams to improve detection coverage and reduce response times
* Develop scripts and automation tools to improve operational efficiency and security posture
* Support incident investigations, threat hunting activities, and continuous security improvement initiatives
* Provide technical expertise on security tooling, monitoring strategies, and emerging threats
Key Skills:
* Strong experience within Security Engineering, Detection Engineering, or Cyber Security Operations
* Hands-on experience with SIEM technologies, threat detection, and security monitoring
* Experience with security tooling such as EDR, DLP, email security, and network security platforms
* Knowledge of security frameworks and attack methodologies including MITRE ATT&CK and NIST
* Strong understanding of Active Directory security and Windows event logging
* Experience with scripting and automation using PowerShell and/or Python
* Good understanding of networking concepts including firewalls, VPNs, proxies, and TCP/IP
* Experience working across cloud environments including Azure, AWS, or GCP
* Excellent communication skills with the ability to work across technical and business teams
Experience:
* Security orchestration and automation (SOAR)
* Privileged Access Management (PAM) solutions
* Threat hunting and advanced detection engineering
* Financial services or other regulated environments
* Relevant industry certifications such as AZ-500, SC-200, CompTIA Security+, or equivalent