Overview

Senior Cyber Security Engineer - Operations — Location: London, Hybrid - Office and remote. Salary: up to £80K + Excellent package and benefits. This role is with Innovative FinTech and focuses on strengthening security operations to align with current best practices and standards. The role acts as a lead technical engineer in security operations escalations, handling complex security incidents, investigations, and operations activities to safeguard platforms and data across the estate. You will work with the Security Operations Manager to detect, respond to, and mitigate evolving cyber threats, while embedding security best practice across the organisation.

Key responsibilities

• Triage and investigation of Security Operations Centre (SOC) alerts, escalating where required, acting as a senior technical security expert in the team
• Analyse the effectiveness of the technical security services within the SOC, with the aim to improve these in-line with technical best practice and standards
• Identify gaps in the technical security services, and own and manage the improvement programmes through their project lifecycle
• Performing root cause analysis of incidents and coordinating effective containment, eradication, and recovery activities
• Managing vulnerability assessments and validating remediation/patching effectiveness
• Coordinating and tracking internal and third-party penetration testing programmes
• Administering and tuning email/web gateways, SIEM platforms, and endpoint detection/response (EDR) tools
• Developing and maintaining threat intelligence feeds; analysing IOCs (Indicators of Compromise) and TTPs (Tactics, Techniques & Procedures)
• Monitoring system compliance against frameworks (ISO27001, NIST, CIS) and driving remediation programmes
• Supporting the evaluation, deployment, and configuration of next-gen and cloud-native security solutions

Technical skills and experience

• Strong knowledge of risk management methodologies and cyber defence principles
• Hands-on experience with SIEM platforms, IDS/IPS, EDR, and vulnerability management tools
• Familiarity with cloud security controls and standards (AWS/Azure/GCP)
• Working knowledge of incident response processes, digital forensics, and malware analysis
• Experience with secure configuration, hardening, and monitoring of operating systems, networks, and applications
• Understanding of MITRE ATT&CK framework and threat modelling practices
• Knowledge of cryptography, authentication, and identity/access management solutions
• Experience in financial services or high-availability environments preferred
• Ability to challenge and improve security architecture, processes, and policies

If you are passionate about cyber defence, thrive on technical challenges, and want to influence the security posture of a fast-paced environment, this is a great role to be both pro-active and operational.

Seniority level

• Mid-Senior level

Employment type

• Full-time

Job function

• Information Technology

Industries

• Financial Services, Banking, and Technology, Information and Media