Hays Specialist Recruitment Limited

PRINCIPAL CYBERSECURITY ENGINEER SC Cleared - UK Only - (Sponsorship is unavailable) you must hold SC Clearance.Provide expert advice on the defences against cyber threats, data breaches, and emerging risks. This includes offering guidance on the selection, design, justification, implementation, and operational management of cybersecurity strategies, technologies, and standards. Contribute to the development and refinement of controls and processes to ensure the safety, confidentiality, integrity, availability, and overall security of data stored on systems. You will be responsible for identifying gaps in existing cybersecurity policies and procedures and, in collaboration with security, network, information governance, and technical leads, developing new measures to address these gaps. KEY RESPONSIBILITIES: You will work closely with system and service owners, as well as internal and external stakeholders, to design, implement, and enforce appropriate protective and detective security controls, policies, and procedures. The role includes the administration and operational management of security tooling and SIEM platforms, with responsibility for monitoring, detecting, and responding to cyber threats, intrusions, and unauthorised or suspicious activity. This includes Microsoft Sentinel (data and source tuning, creation and maintenance of workbooks and connectors, and threat intelligence review), Microsoft Defender for Endpoint and Defender for Cloud, and Darktrace, including system and model tuning, email module management, and configuration of autonomous response actions. You will be responsible for incident response activities, including triaging security alerts, investigating incidents, coordinating escalation and remediation, and conducting root cause analysis. You must be able to communicate effectively about security incidents and cyber risks to both technical and non-technical stakeholders. The role works closely with the Security Operations Centre (SOC) partner, supporting the assessment and investigation of alerts and contributing to the development and refinement of incident response plans and playbooks. You will support vulnerability management activities, including vulnerability assessments, annual audits, and penetration testing. This includes preparing and presenting incident, threat, and compliance reporting to stakeholders at all levels, including compiling a monthly SIRO report. Continuous improvement is a core responsibility. You will conduct post-incident reviews, recommend control and process improvements, and contribute to the creation and maintenance of cybersecurity governance documentation. You will also research emerging cyber threats and mitigation strategies and provide reports or presentations to senior stakeholders as required. The role supports cybersecurity training and awareness initiatives, promoting a strong security culture and helping to upskill colleagues in cybersecurity best practices. You will also collaborate with solution architects and project teams to ensure security is embedded into system and application designs, supporting secure architecture and delivery from the outset. Compliance & Framework Alignment: Ensure security operations align with regulatory standards and frameworks such as NIST, ISO 27001, and NCSC CAF. Person SpecificationEssential: Demonstrated experience with Microsoft Sentinel, Microsoft Defender for Endpoint/Cloud SIEM tools, threat intelligence platforms, and vulnerability management. Technical experience securing Microsoft Azure and Amazon Web Services cloud environments as well as on-premise/virtual Microsoft technologies. Strong analytical, communication, and problem-solving skills, including the ability to produce clear technical and non-technical reports. Ability to analyse and interpret security events/logs and perform remediation work to address security issues. Desirable: Recognised cybersecurity certifications (e.g., CompTIA Security+, CEH, GIAC, CISSP). Experience with DarkTrace Qualifications Bachelor's degree in Cybersecurity or Computer Science Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at hays.co.uk

Apr 21, 2026

Full time

Cyber Security Specialist

Mane Energy

Our client, a leading organisation within the defence and advanced technology sector, is seeking a Product Cyber Security Specialist to support the delivery of secure, mission critical systems. This role offers the opportunity to work across complex engineering programmes, contributing to the protection and resilience of advanced defence platforms. The Role As a Product Cyber Security Specialist, you will provide cyber security expertise across the full systems engineering lifecycle. Working closely with engineering and delivery teams, you will support the identification, assessment and management of cyber risks, ensuring security is embedded throughout product development. You will also contribute to the ongoing development of product cyber security capabilities, including the use of automation and emerging technologies to enhance assurance processes. Key Responsibilities Support and enhance automation of cyber security risk and vulnerability assessment activities, including the use of advanced technologies Provide cyber security expertise across the product systems engineering lifecycle Maintain and manage cyber security risk artefacts, ensuring accuracy and consistency Provide timely technical guidance to engineering and delivery teams Plan cyber security activities and contribute to project estimates and planning Support delivery of proportionate and effective cyber security approaches across programmes Contribute to the development and continuous improvement of cyber security capability Essential Requirements Degree in Engineering, Computer Science, Cyber Security, or equivalent experience Strong background in cyber security and/or engineering environments Interest in cyber security within industrial control systems or operational technology Experience working with engineering or cyber design data Awareness of industrial control systems environments Knowledge of cyber security frameworks such as NIST CSF Experience in threat modelling using frameworks such as MITRE ATT&CK, DEF3ND or EMB3D Experience in cyber security risk management Familiarity with vulnerability, patch and update management processes Desirable Skills Understanding of Secure by Design principles aligned to UK MOD standards (e.g. DEFSTAN 05-139, DEFSTAN 05-138) Familiarity with ISA/IEC 62443 Experience or certifications relating to operational technology or industrial control systems This is an opportunity to join a well established organisation delivering advanced solutions within the defence sector. The role offers strong potential for professional development and involvement in high impact, technically challenging programmes.

Apr 15, 2026

Full time

2 jobs found

Modal Window