Cyber Security Engineer

Cyber Security Engineer

Location:

Hammersmith (Hybrid – 3 days in office)

About the role and the team:
As a business‑critical new role, you will support the Head of Cyber Security in developing, maintaining and delivering programmes to improve our security posture and to align with our compliance and regulatory obligations, including Cyber Essentials, NCSC CAF and Telecoms Security Act (TSA). We are looking for a technical engineer with experience in translating regulatory requirements into BAU behaviours, cyber governance, risk and compliance, and strong stakeholder management skills.

You will work with internal teams to provide technical and tactical advice to areas such as Procurement, HR, Business Compliance, Architecture, IT Infrastructure and Design to create and implement security policies, standards, processes and controls in line with standards such as TSA, Cyber Essentials Plus and NCSC CAF.

• Work with internal and external teams providing technical and tactical advice and support the implementation of governance and control frameworks, including compliance monitoring and assurance.
• Work with regulatory and compliance teams to provide technical support and responses to requests for information from regulators, insurers, auditors and third parties.
• Manage and retain our certifications, schedule audits and remediate non‑compliance items.
• Develop and deliver technical security standards against compliance framework requirements.

• Monitor, measure and maintain cyber‑security technical risks.
• Drive cyber risk remediation activities.
• Actively participate in identifying technical security risks requiring mitigation.

• Support vulnerability management activities across a broad technology estate (servers, endpoints, network devices, in‑house applications).
• Support penetration and security testing activities and follow up on resulting remediation tasks.
• Participate in security tooling proofs of concept (PoCs).
• Proactively seek to improve technical security controls.
• Research new technologies and adopt an active threat‑intelligence mindset.
• Translate technical risks and topics into meaningful business language, adapting to target audiences.

• Cyber Security or equivalent degree or professional certifications such as CISSP, CISM, CRISC.
• Understanding of identifying technical risk, security‑compliance opportunities, threats and vulnerabilities within the telecom industry.
• Previous experience in information security implementation, development or operations.
• High level experience of information security risk management.
• Strong understanding of the technologies and architectures used to support information security.
• Hold a current UK Security Clearance or willingness to undergo vetting.
• Experience supporting a vulnerability management function.
• Previous penetration testing/security testing experience – DESIRED.
• Previous experience or understanding of NCSC CAF and TSR – DESIRED.

We’re in our customers’ corner and our vision is to be the UK's most loved and desired broadband provider, showing the way broadband is done! We were awarded Broadband Provider of the Year 2023 at the Uswitch Telecoms Awards and the Fair Terms Gold Award 2023, and we are proud of our Great Place to Work Certification (2022‑23) and UK's Best Workplace for Wellbeing (2022).

• We work smarter, together.
• We stay focused.
• We strive for excellence.

• Competitive salary.
• Global remote working for up to 2 weeks per year for those who are able to work remotely.
• 25 days' paid holiday increasing each year, to a maximum of 35.
• Extra days off for birthday, moving home, wedding/civil partnership and volunteering.
• Private medical insurance provided by AXA Health.
• Life assurance giving you cover of 4 times your base salary.
• Partnership with the Kings Trust.
• Our pension scheme matches your contributions up to 4%.
• Retail offers – discounts from hundreds of recognizable brands.
• Free Hyperoptic broadband if you live in a Hyperoptic area.
• Enhanced pay for new parents.

We’re committed to providing equal opportunities to all applicants and employees. We welcome applications from candidates from all walks of life.

• You apply.
• We carefully review your application.
• We'll get back to you – even if it's a no (for now).

For more information on the hiring manager or team for this role, please reach out to (Talent Partner) who can support with additional questions.