Senior Security Engineer

Pepper Advantage is one of the leading specialist loan servicing companies in the UK and we are currently looking for a Senior Security Engineer to join our Uxbridge, London office.

You will have a proven background in a senior technical security role within a hybrid cloud environment, with strong experience across Microsoft Defender, Azure security controls, Conditional Access, Intune, and M365 security.

This is a hybrid role, with the expectation of a 2-3 days per week office attendance following a period of office base training.

Your responsibilities will include:

• Analysing signals from Defender for Endpoint, Identity, Cloud Apps, and Azure Security Centre and Arctic Wolf.
• Vulnerability management and remediation. Providing vulnerability reporting to DoIT&S and HoIT
• Acting as the technical escalation point for advanced security incidents and investigations.
• Leading root-cause analysis and produce actionable remediation plans.
• Improving detection rules, alert tuning, and automation workflows
• Maintaining and optimising Conditional Access, MFA, device compliance, and identity lifecycle controls.
• Implementing Zero Trust principles across identity, device, and application layers.
• Supporting privilege management and governance (PIM, least privilege, access reviews).
• Strengthening security posture of Intune, SCCM, and Windows endpoints (baselines, policies, patches).
• Driving configuration hardening across servers, Azure resources, and M365 workloads.
• Improving and maintaining Azure security controls (NSGs, ASR, Defender plans, RBAC, encryption).
• Working closely with network engineering on Palo Alto firewalls, VPNs, inspection policies, and threat signatures.
• Assisting with internal/external audits, evidence gathering, and compliance initiatives.
• Maintaining documentation for security policies, standards, and operating procedures.
• Contributing to risk reviews, technical assessments, and mitigation plans.
• Leading security engineering workstreams within major projects (migrations, upgrades, expansions).
• Identifying opportunities for security automation using PowerShell, Graph API, and Azure-native tools.
• Recommending improvements to overall architecture, resiliency, and alignment with best-practice frameworks.

Essential skills:

• In depth hands-on technical experience with vulnerability resolution, Palo Alto firewalls, security profiles.
• Proven background in a senior technical security role within a hybrid cloud environment.
• Strong experience across Microsoft Defender, Azure security controls, Conditional Access, Intune, and M365 security.
• Deep knowledge of Active Directory / Entra ID security hardening.
• Strong PowerShell scripting and automation capabilities.
• Ability to analyse complex incidents, perform forensics, and drive technical remediation.
• Strong grasp of modern security principles: Zero Trust, least privilege, hardening baselines, and identity-first security.
• Exposure to SIEM/XDR tooling (Sentinel, Splunk, etc.).
• Experience with vulnerability management tools (Tenable, Qualys, Defender TVM).
• Understanding of CIS benchmarks, NIST, ISO 27001, or SOC2 frameworks.
• Familiarity with Azure Automation, Logic Apps, or advanced conditional access patterns.
• Experience with PKI, certificates, and secure configuration of cloud applications

Our benefits:

• Salary range of £67k - £75k per annum;
• Hybrid working model;
• Private medical insurance
• Life insurance
• Eye care contribution;
• Salary Sacrifice Pension matched up to 8%;
• 25 days holiday per annum + bank holidays;
• EAP;
• Wellbeing and volunteering days;
• Payroll giving;

About Pepper Advantage

The UK arm of Pepper Advantage was established in 2013, and today we’re one of the most successful and dynamic loan-servicing businesses throughout the four home nations. With offices in London and the North of England, Pepper Advantage UK employs over 360 people and has approximately US$25 billion in assets under management. Key sectors include commercial and residential mortgages, including prime, near-prime and non-conforming, and SME loans.