Cyber Security Engineer

Department: IT

Employment Type: Full Time

Location: Birmingham

Description

Dains Group is undergoing an exciting period of growth, with recent acquisitions creating a fast-paced and dynamic environment across the organisation. We’re seeking a strategic and collaborative Cyber Security Engineer to lead our cyber security strategy and drive continuous improvement.

In this key role, you’ll manage the relationship with our outsourced Security Operations Centre (SOC) to enhance the organisation’s Microsoft infrastructure, chair the Cyber Security Board, oversee key security platforms, and work closely with the Group IT Director to develop robust security policies and procedures.

Your leadership will be vital in strengthening security awareness, safeguarding communications, and reducing risk throughout the business.

Key Responsibilities

• Cyber Security Strategy & Policy Development: Lead the creation and implementation of cyber security policies, standards, and procedures aligned with business goals and regulatory requirements.
• Cyber Security Board Leadership: Chair and coordinate the Cyber Security Board, driving strategic discussions, risk oversight, and cross-functional alignment on cyber initiatives.
• SOC Collaboration: Work closely with the outsourced SOC to ensure effective threat monitoring, incident response, and continuous improvement of security operations.
• Microsoft Sentinel Engagement: Collaborate with internal teams and the SOC to ensure Microsoft Sentinel is effectively configured and utilised for threat detection and reporting.
• Platform Ownership – KnowBe4 & Egress: Take full ownership of the KnowBe4 security awareness platform and Egress secure communications tools. Drive adoption, manage configuration, monitor effectiveness, and report on performance.
• Cross-Business Engagement: Partner with teams across the organisation to promote cyber security awareness, support secure project delivery, and ensure security is embedded in business processes.
• Risk & Threat Management: Identify, assess, and mitigate cyber risks. Conduct regular risk assessments and ensure appropriate controls are in place.
• Incident Response & Recovery: Coordinate incident response efforts with the SOC and internal stakeholders. Lead post-incident reviews and implement lessons learned.
• Security Monitoring & Reporting: Oversee the development of dashboards and reports to provide visibility into security events, trends, and KPIs for senior stakeholders and the Cyber Security Board.
• Compliance & Governance: Ensure compliance with relevant standards and regulations (e.g., GDPR, ISO 27001, NIS2). Maintain audit readiness and support external assessments.
• Awareness & Training: Develop and deliver cyber security awareness initiatives using KnowBe4 to educate employees and reduce human-related risks.
• Third-Party Security Oversight: Evaluate and monitor the security posture of vendors and partners, ensuring alignment with organisational standards.

Skills, Knowledge & Expertise

• Education: You hold a Bachelor’s degree in Computer Science, Information Systems, or another IT-related field, providing a strong foundation for the technical demands of the role.
• Certifications: You possess relevant industry certifications such as CISSP, CISM, CEH, GIAC, or equivalent, demonstrating your commitment to professional excellence in cybersecurity.
• Experience: You have a minimum of 5 years’ experience in cybersecurity, with a proven track record in managing and implementing secure systems and processes.
• Technical Skills: You bring deep expertise in cybersecurity engineering, including threat detection, incident response, and vulnerability management. You are proficient in using SIEM platforms such as Splunk, QRadar, and Sentinel, as well as security orchestration tools.
• Problem-Solving and Decision-Making: You exhibit excellent problem-solving skills and are capable of making effective decisions under pressure in high-stakes environments.
• Regulatory Knowledge: You are familiar with key regulatory frameworks relevant to cybersecurity, including PCI-DSS, HIPAA, and SOX, ensuring compliance and risk mitigation.
• Stakeholder Engagement: You are confident and approachable, able to build strong and effective relationships with external customers, stakeholders, and internal teams across the business.
• Professional Attributes: You are resilient, adaptable, and motivated, with strong influencing skills and a structured, organised approach to work.

Join us to advance your expertise in a dynamic environment where growth and learning are prioritised and your ability to lead and collaborate is valued and nurtured.

Job Benefits

At Dains, we are committed to your professional growth and development. We provide a comprehensive suite of training and development opportunities designed to enhance your skills and expand your career possibilities. Our leaders utilise a coaching style and provide on-the-job training.

You will have access to continuing professional development courses and will be sponsored to undertake a coaching training course if you are not already a trained coach. We support every team member in achieving their full potential. Our development programmes are tailored to nurture your unique talents and ambitions, ensuring you not only meet but exceed your professional goals.

We offer a highly competitive salary, and our generous benefits package includes, but is not limited to:

• Flexible and hybrid/smart working options
• 25 days annual leave (plus bank holidays)
• Option to buy and sell annual leave
• Health Insurance
• Life Assurance
• A generous discounted shopping platform for all staff
• Greener car scheme
• Cycle to work scheme

Joining us also brings many social benefits; we have a full social calendar!