Cyber Security Engineer – Information Security
What will you be doing?
The PayPoint Group is looking to expand its Information Security team with a new Cyber Security Engineer role. You will create, implement, and maintain security content such as rules, playbooks, dashboards, and reports for our security systems. This role requires a strong understanding of security best practices and experience with enterprise security platforms in a SOC environment. The role is hybrid with a requirement to be onsite at least once a week in Welwyn Garden City.
Key responsibilities
* Security Engineering – develop detection rules, alerts, and automation playbooks using Microsoft security platforms, manage log ingestion, ensure full coverage of critical assets, and drive integration of automation and AI to enhance security operations.
* Security Analysis – monitor and analyse security alerts to detect threats, use behavioural analytics and threat intelligence to uncover anomalies, conduct proactive threat hunting, and maintain detailed risk profiles for users, systems, and applications.
* Endpoint Detection and Response (EDR) – manage and maintain endpoint security and compliance, perform daily health checks, resolve issues, and ensure configurations meet organisational standards; enhance threat‑hunting capabilities by integrating threat intelligence and correlating EDR data with SIEM and XDR platforms.
* Data Loss Prevention (DLP) – implement and configure DLP solutions, define classification policies, and monitor for potential data leaks to protect sensitive information and prevent unauthorised exfiltration.
* Incident Response – analyse threats, assess business impact, participate in the response lifecycle from containment to recovery, document incidents, follow established playbooks, and continually improve them. Automation will be key to streamlining investigations.
* Testing and Validation – take part in cyber crisis simulations, penetration testing, and table‑top exercises to ensure defences are robust and response plans are effective.
* Business Context & Risk Management – understand the business value chain, map critical assets, conduct risk assessments, and align security efforts with business priorities.
* Technology Leadership – drive continuous improvement across security platforms, optimise performance, and bring technical expertise to the table; familiarity with SaaS-based budgeting and licensing models is valuable.
What we would like from you
* 2‑4 years of experience in a SOC or cybersecurity‑related role.
* Hands‑on experience with IT environments including Windows, Linux, VMware, and AKS.
* Proficiency with security tools such as WAF, proxy, DNS, IDS, firewalls, anti‑virus, DLP, idP, IAM, PAM, and MFA.
Our benefits
* Holiday purchase scheme – 25 days holiday plus bank holidays as standard.
* On‑site gym (free) and nationwide corporate‑rate gym membership.
* Online benefits portal with access to deals, discounts, shopping, holidays, etc.
* Contributory company pension scheme.
* Progression and development opportunities.
* Private medical insurance.
* Electric car scheme.
* Life assurance of 3× annual gross salary, with the option to purchase additional cover.
* Discounted range of benefits including critical illness cover, Cycle2Work scheme, dental insurance, and TasteCard dining discount.
Workplace
Hybrid role – onsite at least once a week in Welwyn Garden City.
We are a disability‑confident, equality‑focused company welcoming all colleagues regardless of disability, age, race, religion, gender identity or sexual orientation.
#J-18808-Ljbffr