Job Description

Main Purpose of the Role:
The Cyber Security Engineer is a versatile, technically capable role within CLIENT's Cyber Security Engineering function. The engineer will play a hands-on role in delivering, maintaining, and troubleshooting key cyber security technologies while supporting the implementation of new controls and improvements.
This position requires a well-rounded individual with strong foundational knowledge across Windows and Linux platforms, network infrastructure, and cyber security tooling. The successful candidate will work across a variety of use cases including platform engineering, incident response support, project delivery, and audit preparation. Familiarity with tools such as Varonis, vulnerability scanners (e.g., Qualys), SIEM, DLP, and PAM is highly desirable, as is experience with scripting or automation in PowerShell, Python, or Bash.
The engineer will act as a trusted technical contact across a range of systems and controls, often leading investigations into complex issues, supporting change deployments, and ensuring documentation and support materials are accurate and up to date. The role suits someone who enjoys solving problems, is comfortable with technical ambiguity, and is ready to tackle varied challenges across the cyber estate.
Key Responsibilities:
You will act as a key point of contact for internal audit, IT risk, and security governance teams, ensuring alignment with regulatory frameworks (e.g., ISO 27001, SAMA, SWIFT CSCF) and internal security standards.
Core Responsibilities
o Provide technical support and lifecycle management of cyber security tools such as EDR / MFA / DLP o Investigate, triage, and resolve platform-level incidents affecting security tools and controls.
o Support incident response teams by providing tooling insights, logs, and root cause analysis.
o Contribute to the successful implementation of new security solutions, including design input, testing, deployment, and documentation.
o Liaise with infrastructure teams to troubleshoot issues related to control integration and coverage.
o Assist in running vulnerability scans, analysing results, and tracking remediation efforts.
o Write and maintain accurate documentation including implementation procedures, runbooks, and technical standards.
o Participate in internal and external audit activities by gathering evidence, explaining configurations, and supporting reviews.
o Identify control gaps or inefficiencies and suggest engineering improvements.
Risk Identification and Mitigation
o Identify potential security risks posed by threat actors and gaps in existing deployments.
o Collaborate with internal teams and vendors to develop mitigation plans and track remediation progress through ServiceNow.
o Support organistaions security risk profile and associated operational risk reporting.
Process Optimisation
o Continuously refine methodologies and workflows for improved efficiency and effectiveness.
Audit and Governance Support
o Support internal and external audits by ensuring activities are documented and accessible in central repositories.
o Align improvements and mitigation activities with organisational risk policies and governance frameworks.
General
o Support Information Security incidents where requested. o Support Operational Security duties where requested.
o Responsibility covers EMEA for Bank and EMEA for Securities technology
Key Deliverables
o Fully supported and documented security tooling across multiple domains.
o Timely and effective resolution of tooling and platform-related incidents.
o Implementation packages and handover documents for new control deployments.
o Accurate reporting of vulnerability status and policy compliance gaps.
o Automation scripts, dashboards, or integrations that reduce manual workload.

Skills Required