Job Title: Cyber Defence Engineer
We are seeking an experienced Cyber Defence Engineer to join our team and strengthen our internal IT and operational security posture.
The role will focus on hands-on detection, response, and mitigation of threats across internal systems, endpoints, and network environments.
Responsibilities:
* Monitor and respond to security alerts from endpoint, network, and server security tools.
* Perform vulnerability assessments, penetration testing, and configuration reviews on internal systems.
* Assist in the design, deployment, and tuning of security controls across firewalls, EDR, SIEM, and network devices.
* Investigate security incidents, conduct root cause analysis, and recommend remediation.
* Collaborate with IT, infrastructure, and application teams to secure internal systems and maintain secure configurations.
* Maintain technical documentation, including repeatable processes and incident response playbooks.
* Research emerging threats, attack techniques, and security tools relevant to the finance sector.
Requirements:
* 3+ years experience in hands-on security engineering, SOC, or network security operations.
* Strong understanding of Windows, Linux, and network security fundamentals.
* Experience with endpoint security tools, SIEM platforms, and intrusion detection/prevention systems.
* Knowledge of common attack vectors, vulnerability management, and remediation practices.
* Scripting experience in Python, Bash, or PowerShell.
* Strong analytical skills and attention to detail; curiosity for tracking down threats and misconfigurations.
Preferred Qualifications:
* Security certifications such as Security+, eJPT, CEH, or OSCP.
* Experience in financial services or highly regulated environments.
* Familiarity with Active Directory, LDAP, and identity-based security controls.
* Understanding of network segmentation, firewalls, and advanced logging/monitoring strategies.