Job Description
Are you a security strategist with a passion for Governance, Risk, and Compliance (GRC)? Apex Cyber Defense is seeking a Senior Security Engineer to lead our security framework and safeguard our enterprise assets from sophisticated cyber threats.
In this high-impact role, you won't just be patching systems; you will architect our security philosophy, ensuring our clients remain resilient in an ever-evolving threat landscape. You will work closely with C-Suite executives to drive a security-first culture across the organization.
Why Join Us?
- Competitive Package: Salary up to £110,000 plus performance bonuses.
- Remote/Hybrid Flexibility: Based in the heart of London with hybrid working options.
- Cutting-Edge Tech: Work with the latest in SIEM, Zero Trust architectures, and AI-driven threat detection.
Your Mission
As the Senior Security Engineer, you will be the guardian of our digital perimeter. You will design robust security policies, manage compliance frameworks (ISO 27001, GDPR), and lead incident response strategies to minimize downtime and data exposure.
Responsibilities
- Design, implement, and maintain a comprehensive enterprise security architecture aligned with industry standards (NIST, ISO).
- Conduct regular vulnerability assessments and penetration testing to identify security gaps before they are exploited.
- Oversee Security Operations Center (SOC) metrics and drive continuous improvement of monitoring tools and alerting strategies.
- Lead incident response planning and execution, coordinating with legal and IT teams during security breaches.
- Manage and audit access controls, ensuring principle of least privilege is enforced across all systems.
- Develop and deliver security training programs to promote a culture of security awareness among employees.
Qualifications
- Bachelor’s degree in Computer Science, Cybersecurity, or a related field; Master’s degree preferred.
- Certified Information Systems Security Professional (CISSP) or equivalent advanced certification (CISM, CISO).
- Minimum of 6-8 years of experience in Information Security, with at least 3 years in a GRC or leadership role.
- Deep technical knowledge of SIEM solutions (e.g., Splunk, QRadar) and endpoint protection (e.g., CrowdStrike, SentinelOne).
- Strong understanding of cloud security (AWS/Azure/GCP) and container security (Kubernetes).
- Excellent written and verbal communication skills for translating complex technical concepts for non-technical stakeholders.