Job Description
As a Senior Cyber Security Engineer, you will play a key role in supporting the design, implementation, and maintenance of Cyber Security Engineering solutions, controls, and processes across IT and OT environments. You will be responsible for supporting cyber security platform administration, enhancing our security posture, and ensuring that new capabilities are securely deployed in alignment with business objectives. This includes collaborating with stakeholders, supporting compliance efforts, and helping to drive proactive cyber risk reduction.\n\nThis role requires a deep understanding of security engineering concepts, infrastructure technologies, and best practices.
The ideal candidate will have strong communication skills, a solid grasp of IT and OT systems, and a passion for continuous improvement in cybersecurity operations.\n\nWhat you'll be doing as a Senior Cyber Security Engineer\n\nSupport the creation of secure asset builds and system hardening capabilities across end-user computing and server environments.\nCollaborate with business stakeholders to align cybersecurity engineering strategies and controls with organisational goals.\nDevelop and maintain cybersecurity engineering documentation, policies, and procedures.\nImplement and manage security controls across both IT and OT environments.\nMonitor compliance of endpoint and network security solutions, ensuring correct configurations and up-to-date signatures.\nPerform cloud security assessments and produce supporting documentation for secure cloud adoption.\nEvaluate and recommend security technologies, tools, and vendors.\nInvestigate vulnerabilities and implement mitigation actions.\nLiaise with technology and business teams regarding patching and vulnerability remediation.\nDevelop and maintain cybersecurity engineering dashboards and metrics.\nProvide tooling support and maintenance for Identity & Access Management, Privileged Access Management, Endpoint Security, and Network Security.\nSupport compliance with standards and regulations, including GDPR, NIS, and ISO 27001.\nMonitor and optimise security engineering tool performance, implementing proactive solutions.\nStay current on cybersecurity trends, emerging threats, and new technologies. \n\nWhat you should bring to the role\n\nExperience in Security Engineering, with a focus on process and control design in an enterprise environment.\nStrong understanding of both IT and OT systems and infrastructure.Experience in identifying and remediating cyber risks in evolving digital environments.\nGood knowledge of identity and access management technologies (e.g. Entra ID, CyberArk).\nFamiliarity with a range of operating systems and security considerations across SaaS, IaaS, end-user computing, and server estate.\nSound knowledge of network security technologies, including firewalls, IDS/IPS, and NAC.\nStrong analytical, planning, and organisational skills.\nAbility to communicate technical issues clearly to non-technical stakeholders.\nDegree in Cyber Security, Computer Science, Information Technology, Engineering, or a related field.\nIndustry certification(s) such as CCSP, CompTIA Security+, or SC-200.It would be great if you also had\n\nPrevious experience working in a large, complex infrastructure-based or utility organisation.\nExperience in systems or network administration in IT and/or OT environments.\nExperience leading or mentoring others in delivering cybersecurity outcomes.\nSecurity engineering vendor or product certifications such as CVA, Microsoft Certified: Azure Security Engineer Associate, Tenable, or CyberArk.GCS is acting as an Employment Agency in relation to this vacancy