Lead Cyber Security Engineer

Take the next step in your career now, scroll down to read the full role description and make your application. I’m working with a leading law firm that’s building out a brand-new Security Operations (SecOps) function and they’re looking for a Lead Cyber Security Engineer to help shape it from the ground up. This is a fantastic opportunity for someone who enjoys being both hands-on and strategic. You’ll not only be the technical lead on key projects, but also play a big part in developing security strategy, mentoring junior colleagues, and driving the firm’s journey towards a zero-trust model and ISO 27001 certification . Why this role? Chance to build and shape a new function in a well-established law firm. High visibility role working closely with senior stakeholders. Opportunity to lead major security initiatives and strengthen overall cyber resilience. Exposure to a wide range of security tools and technologies, from CrowdStrike and Palo Alto firewalls to email/web gateways and NAC solutions. Career growth - mentor others, lead projects, and become a go-to technical expert. What you’ll be doing: Taking ownership of CrowdStrike EDR , including policy configuration and SIEM tuning. Working with network teams on segmentation, NAC, and firewall controls . Leading on incident response , root cause analysis, and runbook development. Managing and optimising a wide suite of tools: WAF, DDoS, VPN, perimeter firewalls, email/web security, MFA, SSO, PAM, MDM/MAM, and conditional access. Partnering with InfoSec to align platforms with overall security strategy. Supporting vulnerability scanning, remediation, and risk mitigation efforts. Collaborating with external penetration testers and ensuring compliance with frameworks such as ISO 27001, NIST, and CIS . Staying up to date with the latest threats and ensuring best practice is followed across the firm. What they’re looking for: Strong background in cyber security engineering, ideally with experience in: CrowdStrike EDR, Mimecast, Tessian (or similar DLP) Intune, Entra ID, Active Directory Palo Alto firewalls, WAF, Menlo Security Security frameworks and compliance (PCI-DSS, ISO 27001, NIST, CIS) Networking knowledge and experience leading incident response. Relevant certifications such as CPSA, CISSP, or Palo Alto Network Certified Security Ops Professional .