Cyber Security Engineer

THE TEAM
At JSM Group, we're building the utility and infrastructure networks of the future — delivering power and communications solutions that truly matter. Our IT & Security team plays a critical role in protecting our systems, data and operations from cyber threats, ensuring we continue to deliver safely and reliably across all our business units nationwide.

SCOPE OF ROLE
As Cyber Security Engineer, you will help safeguard JSM Group's systems, networks, and data. You will design, implement, and maintain security infrastructure, detect vulnerabilities and security incidents, respond quickly, and work across IT and compliance teams to embed "security-by-design" across our operations — from office systems to cloud environments and utility infrastructure.

You will also support compliance with industry standards, develop and maintain security policies and procedures, and support staff training to maintain a robust security culture.

How You'll Succeed

• Design, deploy and manage security controls (firewalls, IDS/IPS, SIEM, endpoint protection, identity/access management).
• Monitor networks and systems for suspicious activity, analyse log data and security alerts, and respond to incidents swiftly.
• Conduct regular vulnerability assessments and coordinate penetration testing.
• Investigate and provide forensic analysis in the event of security breaches.
• Develop, document and enforce security policies, standards and procedures.
• Work with IT and other technical teams to ensure secure architecture and secure-by-design solutions, especially in cloud and hybrid environments.
• Maintain compliance with relevant security/regulatory frameworks (e.g. ISO 27001, NIST, Cyber Essentials Plus, GDPR).
• Provide security awareness training and guidance to staff across the business.
• Participate in on-call or emergency response rotations (as needed).
• Collaborate closely with stakeholders to embed security as a core business function, not just a technical add-on.

Essential
WHAT IT TAKES

• Degree in Cyber Security, Computer Science, or related field — or equivalent demonstrable experience.
• Recognised cyber-security or IT certification: e.g. CompTIA Security+, CySA+, or similar; or working toward CISSP/CISM, CEH, GIAC certifications.
• Strong understanding of network, cloud, and OS-level security, threats and mitigations.
• Hands-on experience with SIEM tools, firewalls, endpoint protection, identity/access management, vulnerability management, and log/event analysis.
• Ability to perform vulnerability assessments, manage incident response, and carry out forensic investigations.
• Strong problem-solving, analytical and communication skills — able to liaise with technical and non-technical stakeholders.

Desirable

• Experience working in cloud or hybrid environments (e.g. Azure, AWS).
• Scripting or automation skills (Python, PowerShell, Bash).
• Familiarity with Zero-Trust architectures, modern identity & access models.
• Prior experience within a SOC or incident response team.

What We Offer

• A role within a dynamic and growing utility and infrastructure business, working on high-profile, large-scale projects.
• Opportunities for training, certification support, and continuous professional development.
• Competitive salary and benefit package.
• Hybrid working arrangements (subject to operational requirements).
• A diverse, inclusive and supportive working culture — in line with JSM Group's values.

What We Offer You
We truly value your work, time, and skills In return, we will offer you a competitive salary and some additional benefits to support your professional growth, including:

• A role within a dynamic and growing utility and infrastructure business, working on high-profile, large-scale projects.
• Opportunities for training, certification support, and continuous professional development.
• Participation in mentoring and coaching programmes
• 28 days of holiday (excluding bank holidays)
• Hybrid working arrangements (subject to operational requirements).

Equal Opportunity Statement
JSM Group Services Ltd. is an equal opportunities employer and does not discriminate on the grounds of gender, sexual orientation, marital or civil partner status, pregnancy or maternity, gender reassignment, race, colour, nationality, ethnic or national origin, religion or belief, disability or age. Our ethos is to respect and value people's differences, and to help everyone achieve more at work as well as in their personal lives so that they feel proud of the part they play in our success. We believe that all decisions about people at work should be based on the individual's abilities, skills, performance and behaviour and our business requirements. JSM Group operates a zero-tolerance policy to any form of discrimination, abuse or harassment.
JSM Group Services Ltd. is a leading provider of integrated utility infrastructure solutions. Our combination of end-to-end technical expertise, decades of industry experience, and unlimited fresh thinking make us a trusted partner for the implementation of next-generation connectivity in energy and communications. Our focus is on building for tomorrow by delivering every day for customers right across the UK, Europe and beyond.