Senior Cybersecurity Officer
Our client is a leading international financial services organisation seeking a senior Cybersecurity professional to take ownership of information security, cybersecurity and data security across the business. This role acts as the first line of defence within IT and plays a critical part in safeguarding systems, data and infrastructure in a highly regulated environment.
Role Overview
The role provides end-to-end oversight of cybersecurity controls covering physical infrastructure, operating systems, networks, applications, endpoints, backups and third-party suppliers. The position works closely with Head Office, the Data Centre Security Operations Centre and Internal Audit to implement security frameworks, monitor threats, manage incidents and ensure alignment with UK regulatory and international standards.
Key Responsibilities
• Own and develop cybersecurity, information security and data security policies and procedures
• Act as the primary point of contact for security matters with Head Office and the Data Centre Security Operations Centre
• Coordinate penetration testing, cybersecurity risk self-assessments and remediation activity
• Lead real-time monitoring of cybersecurity alerts and events, including investigation and incident response
• Manage and maintain security infrastructure including firewalls, IPS, WAF, SIEM, EDR and endpoint controls
• Oversee vulnerability management, patching and security hardening across Windows, Linux and virtual environments
• Maintain Active Directory security policies, identity controls and access governance
• Review and optimise network and firewall policies to ensure effectiveness and necessity
• Oversee application security across development and testing phases, including SAST and DAST
• Monitor and assess data leakage risks and strengthen encryption controls for data at rest, in transit and in use
Key Skills and Experience
• Minimum of six years’ experience in cybersecurity or information security
• Strong expertise across cybersecurity, information security and data protection within a regulated environment
• In-depth knowledge of security frameworks including NIST 800, ISO 27001 and Cyber Essentials
• Strong understanding of UK regulatory expectations, including PRA, FCA, ICO and GDPR
• Proven experience with SIEM-led monitoring, threat detection and incident response
• Hands-on experience managing firewalls, IPS, WAF, EDR and endpoint security tools
• Strong network security knowledge including routing, switching and firewall design
• Solid experience securing Windows and Linux operating systems and virtual infrastructure
• Experience with Microsoft infrastructure including Active Directory and related security controls
• Strong knowledge of vulnerability management, patching and configuration hardening
• Experience working closely with audit, risk and compliance functions
• Strong reporting skills with the ability to communicate technical risks clearly to senior stakeholders
Qualifications
• Professional certifications such as CISA, CISSP or CCSP are desirable
• Microsoft, VMware or networking certifications are advantageous
This position offers a high level of ownership and visibility within a regulated financial services environment and is suited to a senior cybersecurity professional seeking breadth, influence and long-term stability.
In return, you can expect a competitive salary, excellent benefits and discretionary bonuses. Please note this role is office-based Monday to Friday