Principal Cyber Security Specialist

Title: Principal Cyber Security Specialist

Contract Type: Permanent

Location: Bradford, Chatham, Petersfield, London

Working Pattern: Hybrid (usually a couple of days a week in the office). We welcome part‑time and flexible arrangements and will aim to match your current flexibility where possible.

• Holidays: 25 days (rising to 30) + buy/sell up to 5 days + swap up to 4 bank holidays.
• Pension: Up to 10% employer contribution.
• Enhanced Leave: Enhanced maternity (post‑probation), 4 weeks' paternity, and paid neonatal & carers leave.
• Workations: Work abroad for up to 20 days a year in approved countries.
• Birthday Leave: Your birthday off paid.
• Volunteering: 2 paid volunteering days.
• Learning: Access to Linked In Learning for all colleagues.
• Financial Wellbeing: Free Snoop Premium subscription.
• Healthcare: Self‑pay Den plan & optional Private Medical Insurance.

As a Principal Cyber Security Specialist, you will play a key role in architecting, deploying, and maintaining security‑driven automation, integrations, and platform engineering efforts that support security operations, threat intelligence, and incident response working under Zero‑trust principles. Reporting into the Cyber Security Manager, you will work closely with the security engineering, threat intel, software engineering, Cloud engineering and security operations teams to design, build, and optimise security tooling, ensuring efficient and scalable security operations across our infrastructure.

• Support and mentor members of the security teams, act as an escalation point for technical issues for junior staff members.
• Review and apply security design principals to high, low‑level designs and patterns, in conjunction with Information Security.
• Conduct security assessments of tools and controls, identifying gaps and implementing security enhancements.
• Oversee engineering team efforts for delivery and maintenance of security tooling, ensuring alignment with overall security architecture and operational requirements.
• Engineer and maintain cloud‑native security solutions in Azure, AWS and GCP (the latter an advantage but not required), ensuring security, compliance, and scalability.
• Develop and implement Infrastructure‑as‑Code solutions using Terraform, Ansible, or similar technologies to deploy and manage security tooling.
• Design, build, and maintain security tooling and integrations that enhance security operations, threat intelligence, and detection capability.
• Collaborate with security teams to develop and optimise security workflows, automation playbooks, and integrations between security tools, SIEMs, SOAR platforms, EDR/XDR, and case management systems.
• Build and optimise, log and telemetry ingestion, aggregation, enrichment, correlation and alerting workflows across multiple data sources.
• Work with the Cloud and Dev Ops teams to embed security into IaC CI/CD pipelines, ensuring secure code deployment with automated quality and security gates (Container, vulnerability, secrets detection etc).
• Embed security controls, monitoring, and compliance automation across the software development lifecycle (SDLC) for internally developed applications. As well as for low‑code solutions (Power Platform, Salesforce, Mule Soft etc) (SAST, DAST, dependency scanning etc).
• Build and maintain Application security controls for example SaaS SPM, WAF and MAM.

• 5+ years of experience in Security Engineering, Security Automation, or Dev Sec Ops  role.
• Strong hands‑on experience with design and implementation of security tooling and controls.
• Strong experience of security architecture design reviews.
• Expertise in scripting and automation.
• Experience deploying and maintaining SIEMs (Rapid7 IDR, Splunk, Sentinel, etc).
• Strong cloud security engineering knowledge in Azure and AWS, with GCP an advantage but not required.
• Experience with Infrastructure‑as‑Code (IaC) tools like Terraform, Ansible, etc.
• Strong understanding of Dev Ops principles and experience securing CI/CD pipelines.
• Experience with container security (Docker, Kubernetes) and implementing security controls for microservices…