cybersecurity engineer

CYBERSECURITY ENGINEER

About Us

As part of the Embignell Group, Stonebridge International Insurance Ltd and Union Income Benefit Ltd operate as an insurer and a leading insurance brokerage respectively. Working in partnership with some of the largest Trade Unions, we have set up policies for over 2.5 million members.

Our policies are designed to provide simple, easy-to-understand protection that ensures peace of mind and reliable support when it's needed most. Since 1999, we've paid out over £45 million in claims.

Our UK-based operation is regulated by the Financial Conduct Authority, and our dedication to staff Training & Development has seen us recognised with Investors in People status since 2002.

The Role

As Cybersecurity Engineer, you'll strengthen the organisation's cyber resilience by developing, deploying, and monitoring security controls across on-premise, cloud, and hybrid systems. You will identify vulnerabilities, respond to incidents, and proactively harden systems to ensure the confidentiality, integrity, and availability of business and customer data in line with regulatory and industry standards.

Key Responsibilities

Security Architecture & Engineering

• Design, implement, and maintain layered ("defence-in-depth") security architectures across network, host, application, and data layers
• Integrate security controls within hybrid cloud environments (AWS, Azure, Microsoft 365) and on-premise systems
• Deploy, configure, and tune platforms including Cato SASE, Sentinel One, AWS Security Hub/GuardDuty, Azure Security Center, Azure Sentinel, and Microsoft 365 Defender
• Embed security in Infrastructure as Code templates (Terraform, ARM, Ansible) for repeatable, compliant deployments
• Maintain documentation of all deployed security architectures and controls

Cloud, Network, and Endpoint Security

• Implement, optimise, and monitor AWS and Azure native security controls such as IAM, GuardDuty, Key Vault, and Security Hub
• Manage endpoint protection and EDR/XDR tooling, ensuring consistent configuration and real-time threat visibility
• Oversee firewall, VPN, and intrusion prevention configurations to maintain secure network boundaries
• Support certificate and key management following encryption and PKI best practices

Vulnerability, Threat, and Risk Management

• Automate vulnerability scanning and penetration testing using tools (Qualys, Nessus, OpenVAS) and custom scripts
• Coordinate third-party penetration tests and track remediation actions
• Conduct ongoing threat modelling, patch management, and risk assessments
• Perform regular configuration reviews, compliance checks, and security health audits across all systems
• Maintain awareness of emerging threats and advise on appropriate mitigations

Incident Detection, Response, and Monitoring

• Lead detection, triage, and investigation of security incidents using SIEM tools such as Azure Sentinel, Splunk, or ELK Stack
• Correlate and analyse logs from network, endpoint, and cloud sources to identify potential compromises
• Work with DevOps and IT teams to contain, eradicate, and recover from security incidents
• Produce post-incident reports and lessons learned to improve future response readiness
• Contribute to business continuity and disaster recovery planning

What We Offer

• 25 Days Annual Leave + Bank Holidays
• Ongoing Training & Development opportunities
• Excellent work/life balance
• Room for professional growth in a regulated environment

Salary

£60,000 - £75,000

Who We're Looking For

• Experience in implementing and managing security controls across cloud and on-premise environments
• Strong knowledge of network security, endpoint protection, and cloud security principles
• Hands-on experience with security tools such as SIEM, EDR/XDR, and vulnerability scanners
• Understanding of regulatory frameworks including GDPR, ISO 27001, and FCA requirements
• Experience with scripting and automation (Python, PowerShell, or similar)
• Ability to analyze security incidents and recommend appropriate mitigations
• Professional certifications such as CISSP, CEH, Security+, or equivalent are desirable
• Excellent communication skills and ability to explain security concepts to technical and non-technical audiences

Location

Based in the UK with 2 days to be spent in London Office.

Recruitment Process

• CV screening
• Initial 10-15 minute Teams interview for successful applicants
• In-depth Teams interview with hiring manager for shortlisted candidates
• Final stage face-to-face interview with hiring manager and another team member