Cyber Security Engineer

Cyber Security Engineer  

Salary: £50,000 - £60,000
Location:  Home based with some travel

Build & Mature Security Practices

Portare Solutions is partnering with a key client, an organisation in a significant growth phase, to find a Cyber Security Engineer. This is a brilliant chance to join a growing team and directly contribute to enhancing their security infrastructure and practices. 

About The Opportunity 

You'll be part of a dynamic team responsible for the day-to-day operation of the security infrastructure, keeping a close eye on security events, and responding effectively. You'll be involved in designing, implementing, monitoring, and supporting IT security toolsets, tackling complex issues in a large-scale enterprise hybrid environment. The role is a mix of BAU and project work, including Azure security projects (with a strong M365 focus), automation, and ensuring new applications are deployed securely. It's an exciting time to join as the organisation is undergoing large-scale transformation and IT maturity improvements. 

Your Key Responsibilities Will Include: 

• Helping to build and mature Microsoft Security practices using the Azure M365 stack and E5 capabilities.
• Evaluating the effectiveness and coverage of security products and tooling to continuously monitor and protect assets.
• Identifying, mitigating, and managing security threats, vulnerabilities, and risks.
• Working closely with the managed security operation centre.
• Assessing and responding to external threat intelligence reports.
• Conducting internal audits of security controls.
• Supporting ISO27001, NIST, Cyber Essentials Plus, and other audit programmes.
• Providing support and guidance within IT and the wider business to ensure policy compliance.
• Supporting the continuous improvement of security policies, procedures, standards, and guidelines.
• Supporting the management and investigation of security events, including post-incident reviews.
• Researching security enhancements and making recommendations.
• Staying current on information technology trends and security standards. 

Who We're Looking For 

We are seeking a candidate with solid technical IT Security experience. 

Experience & Expertise: 

• Demonstrable experience in a similar technical IT Security role for a medium to large enterprise.
• Demonstrable specific M365 experience is essential (Sharepoint Online, Purview, InTune, Defender, Sentinel, Azure AD/Entra).
• Knowledge & understanding of security principles across: SIEM, Antivirus, DLP, Firewalls, Open Source Filtering tools, Cloud security (Azure), EDR, Scanning/vulnerability tools, IdAM (PAM).
• Experience working with a SOC is desirable.
• Knowledge of Windows Servers and Linux Servers.
• Familiarity with Endpoint and network security technologies.
• Knowledge of IT Security and Governance best practices and industry standards (ISO27001, NIST, Cyber Essentials etc).
• Strong understanding of technical security risk, threat, and vulnerability management principles.
• Ability to drive own workload, identifying risks and requirements, and working flexibly. 

Qualifications: 

• Recognised IT or Information Security qualifications (Cisco, SANS, ISO27001, CCSP, CISA, or SSCP) desirable.
• AZ500, SC200, SC900 desirable.
• CEH desirable. 

Skills & Behaviours: 

• Intuitive and self-motivating.
• Excellent verbal and written communication abilities.
• Excellent interpersonal skills.
• Ability to work accurately and at pace in a rapidly changing risk environment.
• Ability to respond to risks and issues quickly.
• Willingness to learn and undertake training.