security
Posted Mar 13Senior Cyber Security Engineer
at ENSEK
Nottingham, United KingdomRemote
Responsibilities
- Security architecture & design: Collaborate with engineering and platform teams to design secure solutions, perform threat modelling and review designs for cloud, container and service‑based architectures. •
- Detection & response: Build and maintain monitoring, logging and alerting for security events; lead incident response and post‑incident reviews to drive remediation and lessons learned. •
Requirements
- experience through automation and AI‑driven insight, all underpinned by modern, cloud‑native architecture.
- Cloud security: Define and enforce secure configurations, network segmentation, identity and access controls for public cloud (primarily AWS). •
- experience in cyber security within cloud‑native environments, DevOps or platform engineering contexts. •
- experience securing AWS services, IAM, networking, KMS/secrets and managed services. •
- Experience securing Kubernetes and related tooling (runtime protection, admission controllers, image scanning). •
- experience with Secure Web Gateways, IDP, IDS, EDR, SAST, DAST, WAF technologies. •
- Scripting & development skills: Comfortable writing automation and tools in Python, Go, Bash or similar languages. Company benefits •
Experience
- Experience required: • 5+ years’
Benefits
- 25 days’ holiday + bank holidays •
- Option to buy or sell 5 extra annual leave days per year •
- Vitality Health Insurance, including private healthcare, virtual GP access and mental‑health support •
- Pension with 5% matched contribution •
Additional details
- We help retailers lower operating costs, improve billing accuracy for consumers, and enhance customer
- ENSEK is at an exciting inflection point as we scale at pace towards new international horizons.
- If you’re driven by solving complex, real‑world problems and want to protect resilient, cloud‑native platforms that accelerate the global energy transition, you’ll feel right at home with us. About the role
- As a Senior Cyber Security Engineer you will embed security into the DNA of our B2B SaaS platform.
- You’ll partner with Engineering, SRE, Risk and Product to build security into every part of our product lifecycle, enabling high‑velocity delivery without ever compromising trust or resilience.
- You’ll influence architecture, automate security controls, strengthen detection & response, and drive a measurable uplift in our security posture.
- You’ll define our standards, lead threat modelling, and champion secure‑by‑design practices across an engineering organisation that’s modernising rapidly and ready for your expertise.
- Application & infrastructure hardening: Implement secure coding practices, vulnerability management, secrets management and runtime protections for services and CI/CD pipelines. •
- Incident Management: Support ENSEK’s 24/7 Incident Management processes to ensure security and stability for clients. •
- Automation & tooling: Automate security checks, policy enforcement and remediation using IaC, CI/CD integrations and custom tooling where appropriate. •