Cyber security engineer

Cyber Security Engineer


📍 Birmingham (Hybrid)


We’re working with an organisation in Birmingham looking to bring in an experienced Cyber Security Engineer to play a key role in strengthening and evolving their security capability.


This is a broad and impactful position, ideal for someone who enjoys operating across both hands-on engineering and strategic security governance, with the opportunity to influence security practices across the entire business.


The Role

As a Cyber Security Engineer, you’ll act as a subject matter expert across security architecture, governance, and operations. You’ll be responsible for ensuring security is embedded into projects, supplier relationships, and day-to-day operations.


Key responsibilities include:

* Reviewing new business proposals and advising on security risks and implications
* Defining and implementing security policies, standards, and best practices across the organisation
* Designing and embedding secure architecture principles within projects
* Leading supplier security assurance, including questionnaires, contracts, and ongoing management
* Conducting independent reviews of governance and security practices
* Supporting and assuring secure delivery across infrastructure, data, and application environments
* Leading incident response activities, including coordination of major incidents
* Driving continuous improvement across monitoring, alerting, and reporting capabilities
* Acting as a deputy to the Senior IT Security Manager when required


What We’re Looking For

We’re keen to speak with security professionals who combine strong technical expertise with the ability to influence and guide stakeholders.


Experience & Knowledge:

* Deep understanding of information security controls, frameworks, and best practices
* Experience designing and delivering control maturity assessments
* Proven background leading remediation across security assessments and vulnerability programmes (Cyber Essentials, CE+, NIST CSF)
* Hands-on experience with modern security tooling including:
* Microsoft XDR stack
* SIEM platforms (Splunk / Azure Sentinel)
* Vulnerability management tools (Nessus, Rapid7)
* EDR solutions
* PowerShell automation
* Experience in incident response and improving security operations
* Exposure to enterprise networking and infrastructure environments


Certifications:

* One or more of: CISSP, CISM, CISA (or equivalent)


Skills & Behaviours

* Strong stakeholder engagement and ability to translate technical concepts to non-technical audiences
* Confident in challenging priorities and influencing decision-making
* Calm and effective under pressure, particularly during major incidents
* Collaborative approach, working across technical and business teams
* High attention to detail with strong documentation skills
* Customer-focused mindset with a drive to deliver meaningful outcomes
* Passion for developing others and sharing knowledge


Why Apply?

This is an opportunity to join a business where security is taken seriously and where you’ll have genuine influence over how it evolves. You’ll work across a diverse technology landscape, contribute to strategic direction, and play a key role in protecting critical systems and data.


Interested!?! Send your up to date CV to Chris Butler at CRG Recruitment for review


CRG Recruitment are acting as an employment agency in regards to this position