Profectus Recruitment is proud to be supporting a mature, highly regulated financial services organisation to recruit a Cyber Security Engineer.
This role plays a key part in designing, implementing and maturing the organisation's cyber security capability. It is a hands-on engineering position focused on security architecture, tool implementation, threat prevention, and continuous control improvement across a modern Microsoft-centric technology estate.
You will work closely with Architecture, Infrastructure, Engineering and Risk teams, acting as a trusted security authority while ensuring controls are pragmatic, risk-based and aligned to regulatory expectations.
This is an opportunity for someone who enjoys being technically close to security tooling and infrastructure, while also influencing how security is embedded into design decisions across the business.
Hybrid working: 2 days per week on-site.
The Role
You will:
* Design and implement security solutions across cloud and on-prem environments
* Review and shape technical designs to ensure security patterns and principles are applied correctly
* Support and enhance core cyber processes including vulnerability management, incident response, monitoring, IAM, endpoint security and network protection
* Work closely with technology teams to embed security into change and project initiatives
* Assess risk and define appropriate mitigating controls using a pragmatic, business-aligned approach
* Contribute to the development of security standards, procedures and governance frameworks
* Act as a subject matter authority on security-related queries across technology and the wider business
This role requires someone who can balance technical depth with risk-based judgement and communicate effectively with both engineers and senior stakeholders.
What They're Looking For
* Strong hands-on experience in a Cyber Security Engineer or Security Analyst role
* Experience designing and implementing security controls across modern infrastructure
* Strong knowledge of security architecture principles and secure design patterns
* Experience with Azure, Microsoft Defender, M365 security tooling and firewalls
* Understanding of vulnerability management, incident response, endpoint protection and identity & access management
* Familiarity with frameworks such as NIST, ISO27001, OWASP, MITRE, CIS Benchmarks
* Experience operating within a regulated environment (Financial Services preferred)
* Ability to take ownership, work independently and make risk-based security decisions
Desirable:
* Cloud-native security and Zero Trust principles
* Exposure to regulatory environments such as PCI DSS, GDPR or Cyber Essentials
* Certifications such as CISSP, CISM, CEH or equivalent
If you're looking for a role where you can take real ownership of security engineering, influence technical design decisions, and help mature cyber capability within a regulated financial services organisation, this is an excellent opportunity.
Please apply for immediate consideration.