Job Description
Role title: Cyber Security Engineer
Role Type: Permanent
Location: Edinburgh (blended home working)
About The Department
In the Security, Resilience, and Protection department, protecting customer assets and data is paramount in our changing digital world. This role is an exciting opportunity for an experienced and ambitious Security Engineer.
About The Opportunity
* Passionate about cyber security?
* Want to join a growing, collaborative, and supportive engineering team?
* Desire to learn and expand your skills during a digital transformation journey?
About The Role
This role will contribute to the evolution of the cyber security engineering team, collaborating with enterprise teams to develop a best-in-class function using emerging technologies. It promotes a team culture of learning, creativity, and collaboration, enabling high-quality outputs.
Reporting to the Cyber Security Engineering Manager, you will design, implement, and maintain next-generation detection and log management platforms at the intersection of SIEM engineering, cloud security, and advanced log pipeline management. You will ensure world-class detection fidelity, threat visibility, and compliance across diverse environments.
Responsibilities include delivery across Security Data & Analytics, Security Automation, Incident Response, and Threat Detection, coordinating with the Cyber Security Operation Centre, broader security functions, third‑party suppliers, and global IT and business teams.
Responsibilities
* Security Platform optimisation, covering endpoint, network, cloud and logging technologies.
* Security Orchestration Automation and Response – build security automation playbooks and integrations.
* Security Data & Analytics – onboard data and develop detection logic and analytics.
* SOC Architecture – develop interface definitions and security guidelines.
* Incident response – support the Cyber Security Incident Response Team for cyber incidents.
Essential Criteria
SIEM Engineering & Operations
* Develop advanced detection rules, correlation searches, and playbooks to improve threat detection and response.
* Perform log source onboarding, parsing, and data normalisation on various data types.
* Design, develop, configure and maintain SIEM alerts to support SOC Operations.
Log Management & Data Engineering
* Engineer and maintain log pipelines using Cribl to optimise ingestion, filtering, routing and replay.
* Work confidently on intelligent log transformation, data enrichment and routing strategies.
* Architect scalable solutions for log archival, data rehydration and compliance‑driven retention.
Cloud Security
* Leverage Azure‑native security services such as Microsoft Defender XDR, Defender for Cloud, Azure Monitor, and Azure AD.
* Implement security monitoring, alerting and automation across Azure logging and IaaS/PaaS/SaaS workloads.
* Integrate Azure EventHubs, Log Analytics and apply Kusto Query Language (KQL) and Splunk Processing Language (SPL) to optimise data pipelines and detection engineering.
Not Essential But We Would Love You To Have
* Understanding of microservices architecture, Azure Logic Apps and DevSecOps.
* Contribution to security architecture reviews and risk assessments.
* Experience with ITSM tools such as Jira or ServiceNow for workflow, incident and change management.
* Implement CI/CD practices for security content deployment and configuration management.
* Knowledge of scripting languages for automation playbooks, APIs and parsers for data engines.
* Industry‑recognised certifications such as SC‑200, SC‑100, AZ‑500, Certified Splunk Admin/Architect, PCSAE, CISSP, CEH or equivalent.
* Experience working with globally dispersed teams.
Our Benefits
We offer competitive rewards including 40 days’ annual leave, a 16% employer pension contribution, discretionary performance‑based bonus where applicable, private healthcare, and flexible benefits such as gym discounts, season ticket loans, and an employee discount portal.
Inclusion and Equality
We are proud to be a Disability Confident Committed employer. If you have a disability and wish to apply for a UK role under the Disability Confident Scheme, please notify us in your application. One of our team members will support you through the application process.
At Aberdeen we have adopted a blended working approach that combines face‑to‑face collaboration with the flexibility of working from home, enabling colleagues to find balance. We foster an inclusive culture where diverse perspectives drive our actions. If you need assistance with your application or an adjustment to interview arrangements, please let us know and we’ll be happy to help.
We are committed to providing an inclusive workplace where all forms of difference are valued and where discrimination is forbidden. We embrace diversity in education and professional background, experience, cognition, gender, disability, religion, ethnicity and geography, supporting a culture of meritocracy, fairness and transparency.
#J-18808-Ljbffr