CareerAddict

Cyber Security Engineer

Experis IT

Posted on Jul 10, 2026 by Experis IT
Manchester, Lancashire, United Kingdom
IT
Immediate Start
£55k - £59k Annual
Full-Time

Overview

The Senior CyberSecurity Engineer will own the hands-on technical security of a leading healthcare and dental care provider's web estate, Azure cloud infrastructure, and emerging AI services. Reporting to the Director of IT, this role sits at the intersection of infra, product, and delivery teams. The focus is keeping the organisation secure without slowing it down - hardening web ingress controls, securing identity and access, and building security guardrails for AI adoption. Day-to-day security monitoring is handled by our SOC team; this role goes deeper: owning Azure security posture, managing WAF and edge security, and embedding security into how the organisation builds and runs software.

Responsibilities

  • Web Ingress & Application Security
  • Own and maintain WAF configuration across Cloudflare and Akamai, tuning rules and responding to emerging threats.
  • Review and improve web ingress controls including DDoS mitigation, rate limiting, and certificate management.
  • Apply OWASP principles across the organisation's web applications, working with development teams to identify and remediate vulnerabilities.
  • Lead API security design and governance, ensuring consistent security controls across platform APIs.

Cloud & Platform Security

  • Own Azure security posture using Microsoft Defender for Cloud, identifying and remediating risks across the hybrid estate.
  • Define and maintain security baselines for Azure workloads, virtual networks, and on-premise systems in transition.
  • Work with the Platform Engineering team to ensure cloud infrastructure is built and deployed securely, including network segmentation and least-privilege controls.

Identity & Access Management

  • Own and maintain Entra ID configuration, Conditional Access policies, Access Packages, and app registrations across the organisation.
  • Define and enforce identity governance standards, ensuring access reviews, life cycle management, and role hygiene are maintained.
  • Work with the wider engineering team to ensure application-level identity is implemented consistently and securely.

AI & Emerging Technology Security

  • Define security guardrails and controls for the organisation's AI and automation capabilities, covering data handling, prompt injection risks, and model access controls.
  • Work with the AI and Automation Lead to ensure AI solutions are designed and deployed with security by design from the outset.
  • Stay current with AI security risks and emerging attack vectors, translating threat intelligence into practical controls.

Security Engineering & Standards

  • Embed security into CI/CD pipelines and DevOps workflows, championing shift-left practices across engineering teams.
  • Define and maintain security standards, patterns, and guidelines for use across platform and product delivery.
  • Participate in architecture and design reviews, providing security input as part of the delivery life cycle.

Threat Intelligence & External Partnerships

  • Act as the internal interface for Arctic Wolf, the organisation's outsourced MDR provider, triaging escalations and feeding intelligence back into the engineering environment.
  • Use intelligence from Arctic Wolf and external sources to proactively harden controls before threats materialise.
  • Monitor the external threat landscape relevant to the healthcare and dental sector.

Skills and Experience

Experience

  • 5+ years in a hands-on cybersecurity engineering or security architecture role.
  • Proven experience managing WAF and edge security at scale, using Cloudflare, Akamai, or equivalent platforms.
  • Deep hands-on experience with Microsoft Defender for Cloud, Entra ID, Conditional Access policies, and Azure app registrations.
  • Practical knowledge of API security, OWASP Top 10 remediation, and secure web application design.
  • Experience working Embedded in engineering or platform teams within an Agile/DevOps environment.
  • Familiarity with AI and LLM security risks and emerging best practices for securing AI-powered systems.
  • Experience working with or alongside outsourced MDR or SOC providers.
  • Exposure to identity governance practices including access reviews, life cycle management, and role-based access control.
  • Experience in a healthcare, dental, or regulated industry context is a strong plus.

Skills

  • Ability to communicate security risk clearly to non-technical stakeholders without resorting to jargon.
  • Pragmatic approach to risk: knows when to enforce, when to escalate, and when to accept, without becoming a blocker.

Personal Attributes

  • A collaborator first: builds trust with engineering, product, and platform teams rather than policing them.
  • A role model of the organisation's people values who brings a calm, measured approach to incidents and a genuine curiosity for the threat landscape.

If you receive suspicious outreach claiming to be from us, please contact us via the ManpowerGroup website.


Reference: 3137144256

https://jobs.careeraddict.com/post/113541237
Experis IT

Cyber Security Engineer

Experis IT

Posted on Jul 10, 2026 by Experis IT

Print
Manchester, Lancashire, United Kingdom
IT
Immediate Start
£55k - £59k Annual
Full-Time

Overview

The Senior CyberSecurity Engineer will own the hands-on technical security of a leading healthcare and dental care provider's web estate, Azure cloud infrastructure, and emerging AI services. Reporting to the Director of IT, this role sits at the intersection of infra, product, and delivery teams. The focus is keeping the organisation secure without slowing it down - hardening web ingress controls, securing identity and access, and building security guardrails for AI adoption. Day-to-day security monitoring is handled by our SOC team; this role goes deeper: owning Azure security posture, managing WAF and edge security, and embedding security into how the organisation builds and runs software.

Responsibilities

  • Web Ingress & Application Security
  • Own and maintain WAF configuration across Cloudflare and Akamai, tuning rules and responding to emerging threats.
  • Review and improve web ingress controls including DDoS mitigation, rate limiting, and certificate management.
  • Apply OWASP principles across the organisation's web applications, working with development teams to identify and remediate vulnerabilities.
  • Lead API security design and governance, ensuring consistent security controls across platform APIs.

Cloud & Platform Security

  • Own Azure security posture using Microsoft Defender for Cloud, identifying and remediating risks across the hybrid estate.
  • Define and maintain security baselines for Azure workloads, virtual networks, and on-premise systems in transition.
  • Work with the Platform Engineering team to ensure cloud infrastructure is built and deployed securely, including network segmentation and least-privilege controls.

Identity & Access Management

  • Own and maintain Entra ID configuration, Conditional Access policies, Access Packages, and app registrations across the organisation.
  • Define and enforce identity governance standards, ensuring access reviews, life cycle management, and role hygiene are maintained.
  • Work with the wider engineering team to ensure application-level identity is implemented consistently and securely.

AI & Emerging Technology Security

  • Define security guardrails and controls for the organisation's AI and automation capabilities, covering data handling, prompt injection risks, and model access controls.
  • Work with the AI and Automation Lead to ensure AI solutions are designed and deployed with security by design from the outset.
  • Stay current with AI security risks and emerging attack vectors, translating threat intelligence into practical controls.

Security Engineering & Standards

  • Embed security into CI/CD pipelines and DevOps workflows, championing shift-left practices across engineering teams.
  • Define and maintain security standards, patterns, and guidelines for use across platform and product delivery.
  • Participate in architecture and design reviews, providing security input as part of the delivery life cycle.

Threat Intelligence & External Partnerships

  • Act as the internal interface for Arctic Wolf, the organisation's outsourced MDR provider, triaging escalations and feeding intelligence back into the engineering environment.
  • Use intelligence from Arctic Wolf and external sources to proactively harden controls before threats materialise.
  • Monitor the external threat landscape relevant to the healthcare and dental sector.

Skills and Experience

Experience

  • 5+ years in a hands-on cybersecurity engineering or security architecture role.
  • Proven experience managing WAF and edge security at scale, using Cloudflare, Akamai, or equivalent platforms.
  • Deep hands-on experience with Microsoft Defender for Cloud, Entra ID, Conditional Access policies, and Azure app registrations.
  • Practical knowledge of API security, OWASP Top 10 remediation, and secure web application design.
  • Experience working Embedded in engineering or platform teams within an Agile/DevOps environment.
  • Familiarity with AI and LLM security risks and emerging best practices for securing AI-powered systems.
  • Experience working with or alongside outsourced MDR or SOC providers.
  • Exposure to identity governance practices including access reviews, life cycle management, and role-based access control.
  • Experience in a healthcare, dental, or regulated industry context is a strong plus.

Skills

  • Ability to communicate security risk clearly to non-technical stakeholders without resorting to jargon.
  • Pragmatic approach to risk: knows when to enforce, when to escalate, and when to accept, without becoming a blocker.

Personal Attributes

  • A collaborator first: builds trust with engineering, product, and platform teams rather than policing them.
  • A role model of the organisation's people values who brings a calm, measured approach to incidents and a genuine curiosity for the threat landscape.

If you receive suspicious outreach claiming to be from us, please contact us via the ManpowerGroup website.

Print

Reference: 3137144256

Share this job:
CareerAddict

Alert me to jobs like this:

Amplify your job search:

CV/résumé help

Increase interview chances with our downloads and specialist services.

CV Help

Expert career advice

Increase interview chances with our downloads and specialist services.

Visit Blog

Job compatibility

Increase interview chances with our downloads and specialist services.

Start Test

Similar Jobs

Cyber Security Engineer

Leeds, Yorkshire, United Kingdom

Cyber Security Engineer

Immingham, Lincolnshire, United Kingdom

Cyber Security Engineer

Manchester, Greater Manchester, United Kingdom

Cyber Security Engineer

Redhill, Surrey, United Kingdom