Lead Cyber Security Engineer

I’m working with a leading law firm that’s building out a brand-new Security Operations (SecOps) function and they’re looking for a Lead Cyber Security Engineer to help shape it from the ground up.

This is a fantastic opportunity for someone who enjoys being both hands-on and strategic. You’ll not only be the technical lead on key projects, but also play a big part in developing security strategy, mentoring junior colleagues, and driving the firm’s journey towards a zero-trust model and ISO 27001 certification.

Why this role?

• Chance to build and shape a new function in a well-established law firm.
• High visibility role working closely with senior stakeholders.
• Opportunity to lead major security initiatives and strengthen overall cyber resilience.
• Exposure to a wide range of security tools and technologies, from CrowdStrike and Palo Alto firewalls to email/web gateways and NAC solutions.
• Career growth - mentor others, lead projects, and become a go-to technical expert.

What you’ll be doing:

• Taking ownership of CrowdStrike EDR, including policy configuration and SIEM tuning.
• Working with network teams on segmentation, NAC, and firewall controls.
• Leading on incident response, root cause analysis, and runbook development.
• Managing and optimising a wide suite of tools: WAF, DDoS, VPN, perimeter firewalls, email/web security, MFA, SSO, PAM, MDM/MAM, and conditional access.
• Partnering with InfoSec to align platforms with overall security strategy.
• Supporting vulnerability scanning, remediation, and risk mitigation efforts.
• Collaborating with external penetration testers and ensuring compliance with frameworks such as ISO 27001, NIST, and CIS.
• Staying up to date with the latest threats and ensuring best practice is followed across the firm.

What they’re looking for:

• Strong background in cyber security engineering, ideally with experience in:
• CrowdStrike EDR, Mimecast, Tessian (or similar DLP)
• Intune, Entra ID, Active Directory
• Palo Alto firewalls, WAF, Menlo Security
• Security frameworks and compliance (PCI-DSS, ISO 27001, NIST, CIS)
• Networking knowledge and experience leading incident response.
• Relevant certifications such as CPSA, CISSP, or Palo Alto Network Certified Security Ops Professional.