Cyber Security Engineer

Cyber Security Engineer - AVP Investment Bank London One of our clients - a leading investment bank - is seeking an experienced Security Engineer to join its Cyber Security team. This role will focus on strengthening security monitoring, detection engineering, automation, and proactive threat mitigation across a complex enterprise environment. Working closely with security operations, infrastructure, and engineering teams, you will play a key role in enhancing detection capabilities, improving security controls, and driving automation initiatives across both on-premise and cloud-based platforms.

Responsibilities : Design and enhance security monitoring, detection, and response capabilities across enterprise systems and infrastructure Develop threat detection rules, threat hunting use cases, and security automation workflows Support the ongoing development and optimisation of SIEM and security orchestration platforms Assess security risks and provide guidance on appropriate controls for new technologies and projects Integrate and onboard new log sources to improve visibility across critical systems and services Collaborate with SOC teams to improve detection coverage and reduce response times Develop scripts and automation tools to improve operational efficiency and security posture Support incident investigations, threat hunting activities, and continuous security improvement initiatives Provide technical expertise on security tooling, monitoring strategies, and emerging threats Key Skills : Strong experience within Security Engineering, Detection Engineering, or Cyber Security Operations Hands-on experience with SIEM technologies, threat detection, and security monitoring Experience with security tooling such as EDR, DLP, email security, and network security platforms Knowledge of security frameworks and attack methodologies including MITRE ATT&CK and NIST Strong understanding of Active Directory security and Windows event logging Experience with scripting and automation using PowerShell and/or Python Good understanding of networking concepts including firewalls, VPNs, proxies, and TCP/IP Experience working across cloud environments including Azure, AWS, or GCP Excellent communication skills with the ability to work across technical and business teams Experience : Security orchestration and automation (SOAR) Privileged Access Management (PAM) solutions Threat hunting and advanced detection engineering Financial services or other regulated environments Relevant industry certifications such as AZ-500, SC-200, CompTIA Security+, or equivalent