Lead Security Engineer

Lead Security Engineer - York

A leading cloud and security consultancy who have recently acquired a security operations practice, a CREST certified consultancy and an AWS consultancy which has grown their portfolio to 600+ employees are seeking an experienced Security Engineer to join their team.

A genuinely exciting time to join as they enter a key stage of growth within their security function; they have significant investment to grow their security offering and already have an impressive client portfolio, you'll be given the opportunity to have substantial input in the direction of the security practice moving forwards.

You'll be taking a lead role which will involve building, developing and maintaining operational security offerings which include vulnerability scanning/threat assessment, SIEM (they are currently using an inhouse developed SIEM), DDoS protection, IAM, penetration testing, application security, network security and cloud/on-prem technical security consultancy.


- Provide support and advice to the Practise Lead on security trends, strategy and further opportunities.

- Development of tooling that enhances the operational security of the client and their customers platforms

- Build, enhance and maintain the clients/customers platforms

- Create references implementations of security related tooling and framework (AWS, Azure and M365 ecosystems)

- Collaborate with wider areas of the business to ensure the client's security strategy is delivered and in alignment with the ISMS framework

- Ensure vulnerabilities are managed by completing regular vulnerability scans of their networks

- Provide evaluation of security incidents and manage responses

- Mentor and lead other Security Engineers when required

- Support presales activities for the SecOps offerings

- Maintain knowledge and awareness of security practises, strategies and tools


- Previous experience working within a lead/senior security role

- Strong understanding of modern engineering patterns and tools

- Experience working with SIEMs

- Be proactive in your approach, promoting security throughout and be able to influence teams to adopt best practise

- Any security certifications would be advantageous (AWS Certified Security, Microsoft SC-200, Microsoft 365 Certified etc.)

- Any coding experience (Python, Node, .NET) would be beneficial

- Experience implementing ISO 27001, ISO 27017/18 and PCI-DSS will be highly favoured

Exceptionally competitive salary of up to £80,000 PA, flexible working (3 days per week WFH, potentially more for the right candidate) and numerous other attractive benefits.

Share Job