2 of 2 Permanent Security Posture Jobs in Oxford

Cyber Security and Resilience Engineer Are you passionate about safeguarding digital landscapes and enhancing organizational resilience? We're seeking a skilled Cyber Security and Resilience Engineer to play a pivotal role in fortifying security infrastructure. You will support our Cyber Security Operations strategy by managing and optimising threat protection and detection tools across web, email, endpoints … and cloud environments. This is an exciting opportunity to work closely with cross-functional teams, outsourced security partners, and internal stakeholders to elevate our security posture and drive transformative security initiatives. What You'll Bring to the Table: Minimum of 5 years' experience in cybersecurity, especially within Microsoft-centric and large/multi-region corporate environments … Hands-on expertise with Azure, Entra, and Microsoft 365 Cloud Security Engineering Proficiency in writing complex PowerShell scripts Experience managing security for IaaS, PaaS, and SaaS platforms Strong understanding of threat detection, prevention, and response methodologies Hands-on experience with EDR, email security, and web security solutions Knowledge of security frameworks such as NIST, ISO More ❯

standard modules; pipelines). Build observability (logs, metrics, traces, SLOs) and resilience (HA, DR, RTO/RPO). Drive FinOps —cost transparency, budgets, showback/chargeback, right‐sizing. Embed security‐by‐design and compliance (CIS, NIST, ISO 27001, FCA/NHS/PCI as applicable). Key Responsibilities Architecture & Design Produce HLDs/LLDs, diagrams, ADRs, non‐functional requirements …/EKS/GKE), service mesh (Istio/Linkerd), ingress, and autoscaling. Implement CI/CD (GitHub Actions/Azure DevOps/GitLab), environment promotion, secrets management, artifact repos. Security & Compliance Define guardrails (CIS benchmarks), cloud security posture management (Defender for Cloud, AWS Security Hub, GCP SCC). Vaulting and KMS (AWS KMS, Azure Key Vault …/GKE, ECS/Fargate, VMSS/ASG, serverless (Lambda, Azure Functions, Cloud Functions). IaC & Pipelines: Terraform (required), Terragrunt (nice), Helm, Kustomize, GitHub Actions, Azure DevOps, GitLab CI. Security: Defender for Cloud, Sentinel, AWS GuardDuty/Security Hub, GCP SCC, OPA, HashiCorp Vault, KMS. Data/Integration: Event Hubs/Kafka/PubSub, API Gateway/APIM More ❯