SENIOR CYBER ENGINEER - LONDON - HYBRID WORKING - £90 - £100K + BONUS

SENIOR CYBER ENGINEER - LONDON - HYBRID WORKING - £90 - £100K + BONUS

The Role

We are seeking a Senior Cyber Engineer to lead project-based security engineering work, with a focus on securing identity, devices and cloud platforms.

You will serve as the specialist in identity, access, and cloud security controls, supporting the secure operation and working predominantly within our Microsoft 365, Azure, and Salesforce environments. Working closely with the Head of Technology Operations & Cyber, internal stakeholders, our IT MSP, and our SOC, you will ensure our environment is secure, resilient, and well-governed.

This is a hands-on, delivery-focused role owning security engineering projects end-to-end from design and planning through to implementation, documentation and transition into BAU.

Key Responsibilities

• Security Engineering (Identity, Device & Cloud)
• Define, implement, maintain and enhance security baselines for:
• Improve overall security posture in line with Zero Trust principles.
• Roll out new cloud security features and controls.
• Integrate SaaS platforms for secure SSO and life cycle management.
• Continuously review and strengthen our cyber posture using industry-standard security benchmarks, configuration assessments and cloud security recommendations.
• Establish, champion and evolve patterns for:

• • Identity and access management
  • Microsoft 365 services (email, collaboration, file sharing)
  • MDM/Intune device management (enrolment, compliance, baselines, app protection, conditional access enforcement)

• • Application onboarding and SSO
  • Admin access and just-in-time elevation
  • Use of service accounts and service principals

2. Detection, Response & Assurance

• Enhance identity and access logs and signals within detection and response tooling.
• Tune identity-related alerts in partnership with SOC analysts.
• Support investigations into identity-related security incidents and lead root-cause analysis.
• Contribute to internal/external audits, penetration tests and regulatory reviews relating to identity, access or cloud security.

3. Governance, Documentation & Ways of Working

• Support assurance activities, including internal/external audits, penetration tests and regulatory reviews relating to identity, access and cloud security.
• Maintain documentation for identity and cloud security configurations, guardrails and principles.
• Contribute to policies, standards and procedures related to identity, access and cloud security.
• Support the business in embedding consistent security-by-design practices.

Skills & Experience

Essential

• Strong understanding of Microsoft 365 security capabilities, Azure cloud security concepts and Zero Trust principles.
• Significant hands-on experience administering and securing identity and access management platforms in a complex enterprise environment.
• Strong knowledge of adaptive access and MFA, RBAC and least privilege, Privileged Access Management, Data Loss Prevention, Identity Governance & access reviews, application onboarding and modern authentication (SAML/OAuth/OIDC).
• Proven experience delivering end-to-end security or platform engineering projects in cloud environments.
• Ability to translate regulatory and security requirements into pragmatic technical controls.
• Excellent communication skills across technical and non-technical stakeholders.
• SIEM/XDR tooling experience, such as Microsoft Sentinel.
• Experience contributing to security architecture and design decisions.
• Self-starter mindset - able to work independently and as part of a team.
• Strong problem-solving approach, with willingness to learn, adapt and figure things out.

Desirable

• Experience with Infrastructure-as-Code and automation, eg, Bicep, ARM, Terraform, PowerShell.
• Experience in a regulated financial services environment, ideally FCA-regulated (not essential)
• Experience implementing Salesforce security enhancements (eg, Salesforce Shield).

Qualifications

Essential

• Relevant certifications such as Identity & Access Administrator (eg, SC-300 equivalent) and Cloud Security Engineer (eg, AZ-500 equivalent), or equivalent hands-on experience.
• Strong grounding in cyber security principles through training, qualifications or demonstrable experience.

Desirable

• Industry certifications such as CISSP, CCSP, SSCP or similar.
• Degree in Computer Science, Information Security or a related discipline, or equivalent experience.

This is an excellent opportunity to join a field leading client with opportunities for career progression. For more information and a full job description, please contact Ben Turner at BRT Consulting.