Cyber Security Engineer

Overview

London (SE1) | Hybrid – 2 days per week on site

Closest Tubes: Waterloo and Westminster

We’re working with a high-growth, data-driven SaaS business looking to hire a hands-on Cyber Security Engineer into their Security Operations team.

This is a highly operational, technical role focused on protecting the organisation through real-time detection, response, and continuous improvement of core security tooling across cloud, endpoint, and network environments.

You’ll be working directly across a modern security stack including CrowdStrike, Zscaler, and Wiz, playing a key role in strengthening detection capability, reducing risk, and driving security maturity.

Responsibilities

• Monitoring, triaging, and investigating alerts across CrowdStrike (EDR), Zscaler, Wiz, and SIEM platforms
• Performing incident investigation and response, including validation and escalation
• Conducting threat hunting and detection tuning to improve signal-to-noise
• Identifying vulnerabilities, misconfigurations, and security gaps across cloud and endpoint environments
• Partnering with Engineering, DevOps, and IT teams to drive remediation
• Contributing to runbooks, playbooks, and operational processes
• Supporting threat intelligence analysis and applying insights to detection and response

What they’re looking for

• Experience in a Security Operations / SecOps / SOC Engineering environment
• Hands-on experience with at least one of:
• CrowdStrike (EDR)
• Proven experience in alert triage, incident investigation, and response
• Familiarity with SIEM platforms (e.g. Sentinel, Splunk) and security telemetry
• Good understanding of cloud security concepts (Azure, AWS or GCP)
• Comfortable working in a hands-on, operational environment

Nice to have

• Experience with MITRE ATT&CK or Cyber Kill Chain frameworks
• Exposure to cloud-native / SaaS environments
• Scripting or query languages (KQL, SPL, Python)
• Understanding of identity security (Entra / Conditional Access)
• Exposure to DevOps / CI/CD environments

Why this role?

• Work with a modern security stack (Wiz, CrowdStrike, Zscaler)
• Genuine hands-on engineering role — not just ticket handling
• High visibility across Security, Engineering, and DevOps teams
• Opportunity to shape detection, tooling, and processes
• Competitive salary + bonus
• Hybrid working (2 days onsite)
• 25 days leave + option to buy more + birthday off
• Private healthcare + wellbeing support
• Enhanced parental leave
• Work-from-anywhere (up to 2 months/year)
• Learning & development budget + dedicated training time

You’ll need hands-on commercial experience with tools like CrowdStrike, Zscaler, or Wiz — lab or certification-only experience won’t be enough.

#J-18808-Ljbffr