Senior Cyber Security Engineer

The Opportunity We are working with a large public sector organisation in the North East to recruit a Senior Cyber Security Engineer into a small but growing cyber security team. This is a hands-on technical role, created to strengthen engineering capability, reduce single-person dependency and support a significant programme of security improvement across the organisation.This role is ideal for a practitioner who enjoys configuring, building and improving security controls, rather than a purely analytical or governance-led position.They operate a hybrid working pattern where you would be expected to be in the office 3 days a week. Our client doesn't sponsor visas so candidates will require a permanent right to work in the UK.The Role Reporting into the Cyber Security Manager, you will play a key role in the day-to-day engineering and ongoing development of the organisation’s cyber security controls. The focus is firmly on technical delivery, working closely with infrastructure, networking and a managed SOC provider.Key areas of responsibility include:

• Engineering, configuration and ongoing management of a large firewall estate
• Working extensively with next-generation firewalls
• Firewall policies, VPN configuration and firewall lifecycle management
• Technical implementation and configuration of Microsoft 365 E5 security tooling, including:
  • Microsoft Defender (endpoint, identity, cloud)
  • DLP and Purview policy implementation 
• Acting as the internal engineering counterpart to a managed SOC provider
• Supporting vulnerability management by consolidating findings, engaging technical teams and driving remediation activity
• Contributing to future security initiatives, including Privileged Access Management (PAM) and improvements to secure SDLC practices

The Person With proven hands-on experience in cyber security engineering from a either a purely or predominantly cyber security focussed role, you will possess:

• Good firewall experience 
• Solid understanding of networking fundamentals (TCP/IP, firewall policies, VPNs)
• Experience configuring and working directly with security tooling in live environments
• Cloud security (Microsoft 365, Azure, AWS)
• Strong technical exposure to security tooling, such as:
  •  SIEM/SOAR, EDR/XDR, vulnerability scanners, patch management, CASB, DLP

Desirable experience:

• Microsoft Defender, Purview and M365 E5 security capabilities
• Privileged Access Management (PAM) tooling
• Background in infrastructure or networking prior to moving into security
• Exposure to secure software development lifecycle (SDLC) practices