Cyber Security Engineer

About the role 

The Cyber Security Engineer will ensure the confidentiality, integrity, and availability of our systems and data. This role involves implementing security measures aligned with the NIST Cybersecurity Framework, focusing on proactive threat management and compliance.

Key responsibilities include:

Identify 

• Conduct risk assessments and maintain asset inventories. 

• Develop and update cybersecurity policies and standards. 
  

Protect 

• Implement network security controls including firewalls and encryption. 

• Manage identity and access management (IAM) and multi-factor authentication. 

• Ensure endpoint protection and secure configurations, including internal development landing zones. 

Detect 

• Monitor systems using SIEM tools for anomalies and threats. 

• Perform regular vulnerability scans and penetration tests. 

Respond 

• Lead incident response activities and root cause analysis. 

• Coordinate with stakeholders during security events and breaches. 

Recover 

• Develop and maintain disaster recovery and business continuity plans. 

• Ensure timely restoration of systems after incidents. 

Tools and Technologies 

You will work with innovative solutions to achieve these outcomes, including: 

• Microsoft Sentinel for SIEM and threat detection. 

• Microsoft Purview for data governance and compliance. 

• Darktrace for AI-driven threat detection and response. 

• Additional tools such as endpoint protection platforms, vulnerability scanners, and encryption technologies. 

What success looks like

Success in this role at Progeny means delivering measurable improvements in our security posture, fostering a culture of cyber resilience, and leveraging advanced tools to protect our organisation. You will be recognised for proactive threat mitigation, seamless incident response, and continuous compliance with industry standards.

Our ideal person

Essential criteria 

• Degree in Cybersecurity, Computer Science or related field or equivalent experience 

• Certifications such as CISSP, CISM, or equivalent  

• Hands on experience in cyber security operations and risk management within a regulated industry  

• Familiarity with NIST framework and compliance standards  

• Experience working within ISO27001 framework 

• Experience developing zero trust architecture  

• Strong analytical and problem-solving skills 

• Excellent communication and stakeholder engagement abilities  

• Inquisitive mindset with the ability to question and challenge  

Desirable criteria 

• Experience working within a complex Azure environment and with the Microsoft tech stack  

• Familiarity with our tools and technologies or equivalent solutions  

Learning/Development opportunities

• Grow and collaborate in a supportive environment  

• Learn and share knowledge with people from different professional backgrounds 

• Mentorship opportunities across the team  

Location 

This role offers home-based working, with regular travel expected across our offices, which will mainly include Leeds and Worthing. We enable home and office working, allowing you to balance your personal responsibilities/interests and connecting with your colleagues.