Cyber Security Engineer x 2 - Bristol - New (REF46)

Cyber Security Engineer x 2 – Bristol – New (REF46)

£57.5k + Benefits + Hybrid Working (Bristol)

A market-leading organisation is recruiting two Cyber Security Engineers to join its security & networking function. This is a consultative and hands-on role focused on designing, implementing, and maintaining security controls across hybrid and on-prem environments to keep platforms secure, resilient, and compliant with internal policy and external regulations.

The ideal candidate will embed security throughout the delivery lifecycle, working closely with infrastructure engineers, architects, and project/programme managers. You’ll define and enforce secure configuration baselines, conduct threat modelling and risk assessments, integrate monitoring and alerting, and produce clear security artefacts that guide operational teams.

Candidates must be eligible to obtain SC security clearance

Duties and responsibilities

• Design, implement and optimise security controls across hybrid/on-prem Microsoft and Azure-centric environments.
• Define/enforce hardening standards (e.g., CIS Benchmarks, Microsoft Security Baselines).
• Perform threat modelling, risk assessments, and security validation/UAT; support incident response.
• Maintain SBOMs to support vulnerability management and supply-chain assurance.
• Integrate and enhance security monitoring, logging and alerting (including SIEM/threat detection).
• Create security documentation (designs, risk assessments, mitigation plans, ops procedures).
• Collaborate with project/programme managers and stakeholders to ensure effective control implementation.

Skills / experience (essential)

• Must be SC-eligible.
• 5+ years in cybersecurity or infrastructure security roles.
• Strong technical knowledge of Microsoft and Azure-based environments (cloud & on-prem).
• Network security fundamentals (firewalls, segmentation, secure remote access).
• Knowledge of IAM (MFA, RBAC, conditional access) and data protection (classification, encryption) policies.
• Experience aligning builds to recognised frameworks (e.g., NIST, CIS Controls, ISO 27001, Cyber Essentials Plus).
• Implementing monitoring/logging/alerting and vulnerability management tools including SIEM.
• Ability to define security configurations and drive consistent adoption across estates.
• Experience producing security artefacts (risk assessments, hardening standards, runbooks).
• Understanding of security automation concepts such as SOAR and can script or automate repetitive tasks.

Desirable

• Relevant degree; ITIL Foundation.
• Security and/or cloud security certifications.
• Qualifications covering governance/compliance or networking/infrastructure fundamentals.
• Exposure to OT/IoT environments; experience with SOAR/automation or scripting.

Rewards & Benefits

• Hybrid working and flexible hours.
• 25 days’ holiday plus bank holidays (option to buy/sell additional days).
• Generous pension scheme including a Death-in-Service benefit.
• Annual pay review.
• Private medical insurance (family cover) and enhanced family-leave pay.
• Cycle-to-Work and Electric Vehicle schemes.
• Mental-health and confidential counselling support.
• Comprehensive induction, ongoing learning & development, with support for further qualifications.

Please send your CV to receive the full job description and to discuss the role in more detail.