We are looking for a Cyber Policy Engineer to join our Security Operations Centre on a permanent basis, our SOC is expanding off the back of a £1.3bn investment across technology at the Building Society. This role offers great packages and flexible / remote working options across the UK

We are looking for Cyber / Security Engineers who relish working across multiple change initiatives and immerse yourself in a team that will stretch and test you.

As an Engineer you will help expand our Security Operations team which provides operations, security incident response, and production support for the security services we offer, both on-premise and on our public cloud platforms (AWS / Azure). You will provide strong technical support, enabling technical decisions to be made.

For us, it’s not just about having the right security background, you need to be pragmatic, be able to work collaboratively and be driven to learn and succeed.

We are happy to consider flexible working approaches to help you perform at your best.

At Nationwide we offer hybrid working wherever possible. More rewarding relationships are supported through our hybrid approach, bringing colleagues together across our UK wide estate, whilst also supporting generous access to home working. We value our time in the office to solve problems, to learn, and to feel connected.

For this job you'll spend at least two days per week, or if part time you'll spend 40% of your working time, based at either our Swindon or London office. If your application is successful, your hiring manager will provide further details on how this works. You can also find out more about our approach to hybrid working here.

If we receive a high volume of relevant applications, we may close the advert earlier than the advertised date, so please apply as soon as you can.

What you’ll be doing

As a key member of our Enterprise Security Operations Centre Team, you’ll work in close collaboration with the rest of the Security Operations teams and wider technology teams to drive improvements across our detection, response and prevention capabilities.

At a E3 level, you will:

• Lead the identification and implementation of enhancements to our security controls and protective capabilities across endpoint and enterprise environments.
• Own the design and deployment of security policy and ruleset changes, ensuring robust change governance and operational stability.
• Define and track security metrics and KPIs to provide meaningful insight into control coverage, threat detection performance and team impact.
• Champion documentation, repeatable processes and technical excellence within security engineering.
• Evaluate, configure and manage endpoint protection tooling, ensuring optimal security posture through advance policy and configuration tuning.
• Also reviewing and Quality assuring the work of the junior engineers.

In addition, you will:

• Build a network including external relationships with other engineers/SMEs to understand best practice and emerging trends within engineering
• Act as an engineering advocate across Nationwide, identifying good practices to adopt and sharing experiences, e.g.: through blog posts, tech talks at technical forums, knowledge share, etc.
• Act as a role model and mentor to junior engineers, supporting their development through guidance, feedback and technical leadership

About you

As a skilled and proactive Cyber security professional, you will:

• Bring substantial experience working within diverse Cyber Security Functions such as SOC, Cyber Incident Response, Threat hunting or Penetration testing, with proven ability to operate at a high technical and strategic level.
• Demonstrate hands-on expertise in security control engineering, advanced threat detection and incident response, driving improvements in detection capabilities and operational effectiveness.
• Process a deep knowledge of the Trellix ecosystem, which includes AV, FIM, ePO and the associated applications.
• Exhibit a creative and innovative mindset, continuously identifying and proposing integration opportunities across existing security controls to enhance overall security posture and visibility.
• Have strong proficiency with Windows and Linux operating systems fundamentals, including configuration and security nuances.
• Author and maintain comprehensive, operation security incident response playbooks, ensuring consistency and effectiveness in incident handling
• Build and maintain trusted relationships with both technical and business stakeholders, influencing decision making and aligning security initiatives with business objectives
• Demonstrate a growth mindset with eagerness to learn emerging technologies and security trends, and the agility to adapt quickly in a dynamic threat landscape
• Employ a problem solving and solution oriented approach to identifying gaps and drive continuous improvement of security services and processes
• Have a deep understanding of endpoint security architectures, including policy management, deployment strategies and industry best practises
• Act as a role model and mentor for junior engineers, sharing knowledge, providing guidance and fostering a culture of engineering excellence

Our customer first behaviours put customers and members at the heart of how we work together. They are the set of behaviours that every colleague needs to display, in every role:

• Feel what customers feel - We step into our customers’ shoes, using their feedback and insights to empathise with them and to understand their needs, so that every decision we make starts and finishes with our customers in mind
• Say it straight - We are brave in speaking out and saying what we think – we’re honest and direct with good intent, openly sharing diverse perspectives to reach the best conclusions and using language everyone can understand
• Push for better - We don’t settle for mediocrity, we challenge the status quo, taking responsibility for continuous improvement and personal development
• Get it done - We prioritise what will have the greatest impact, we are decisive, and we take accountability for delivering brilliant customer outcomes.

You can strengthen your application by showing how our customer first behaviours resonate with you, and where you may have already demonstrated these.

The extras you’ll get

There are all sorts of employee benefits available at Nationwide, including:

• A personal pension – if you put in 7% of your salary, we’ll top up by a further 16%
• Up to 2 days of paid volunteering a year
• Life assurance worth 8x your salary
• A great selection of additional benefits through our salary sacrifice scheme
• Wellhub – Access to a range of free and paid options for health and wellness.
• Access to an annual performance related bonus
• Access to training to help you develop and progress your career
• 25 days holiday, pro rata

Banking – but fairer, more rewarding, and for the good of society

We forge our own path at Nationwide.

As a mutual, we’re owned by our members - those customers who bank, save or have a mortgage with us. We challenge the financial sector status quo. We don’t see customers as the engine of our own profit. We share our profits with them and put their needs first. Always there when they need us. Supporting them and their lives.

If you’re inspired by fairer finances, passionate about making a meaningful impact, and truly care about our customers, you’re one of us.

At Nationwide, you are challenged to grow and rewarded for doing so. Valued. Recognised. Inspired to be your best. As a community we want our working lives to count. As a team, we celebrate what we achieve. As a standard-setter, we work for the good of customers, communities, and broader society.

We are Purpose-driven. Uncompromisingly Customer. Unstoppably Nationwide.

What to do next

If this role is for you, please click the ‘Apply Now’ button. You’ll need to attach your up-to-date CV and answer a few quick questions for us.

We respond to everyone, so we will be in contact shortly after the closing date to let you know the outcome of your application.

#LI-post