Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead technical role in enhancing S-RM's information security and managing compliance.
- Company: S-RM is a global consultancy focused on intelligence and cyber security since 2005.
- Benefits: Enjoy 25 days holiday, hybrid working, and private health insurance among other perks.
- Why this job: Join a culture that values security, innovation, and personal growth in a dynamic environment.
- Qualifications: 3+ years in Cyber Security, AZ104 or AWS Solutions Architect Associate required.
- Other info: Flexible working arrangements available; must have permission to work in London.
The predicted salary is between 43200 - 72000 £ per year.
S-RM is a global intelligence and cyber security consultancy. Since 2005, we\’ve helped some of the most sophisticated clients in the world solve some of their toughest challenges.
We\’ve been able to do this because of our outstanding people. We\’re committed to developing bright, curious, driven individuals who want to think critically, solve complex problems, and achieve success.
But we also know that work isn\’t everything, It\’s about the lives and careers it helps us build. We\’re immensely proud of this culture and we invest in our people\’s wellbeing, learning, and ideas every day.
WORKING IN INFOSEC AT S-RM
This is an opportunity to join a company where infosec is embedded into the culture. Our client services include a world-class cyber security team which means we think critically about our own security practices at all levels. We see information security as an asset not a cost centre, and we invest in those who lead it.
This investment means listening to those who know most about our security and supporting their ideas. Our information security function has a growing and very influential voice within S-RM. Infosec staff are encouraged to speak openly about their ideas for improvement, and regular access to senior leadership is guaranteed.
This approach is how we stay ahead of the threats to our business and our clients. S-RM is growing fast. The information security challenges this generates means no day is the same. We believe the variety of work and the team you\’ll accomplish it with present immense opportunities for career development. Our teams are designed to bring out our best whilst also creating opportunities for everyone to contribute and grow.
If that sounds like your kind of team, we\’d like to hear from you.
THE ROLE
As a Security Engineer, you\’ll play a lead technical role in maintaining and evolving S-RM\’s information security.
Key Responsibilities:
- Improve and implement development pipeline security features, such as SAST and DAST
- Manage, monitor and improve compliance, vulnerability management, threat intelligence, detection/prevention tools across a multi-cloud environment.
- Provide expert security design and engineering guidance on complex cloud security challenges and risks.
- Defining the annual and quarterly penetration testing of company infrastructure and in-house developed applications, and re-test vulnerabilities where possible.
- Work with engineering / development / product teams to help architect and implement solutions that are secure by design from project inception to completion through the completion of threat modelling assessments.
- Familiarity and experience with implementing security hardening standards (i.e. CIS, Cloud Foundations)
- Security alert triage, investigation and containment of potential security incidents across corporate estate and cloud environments.
- Maintenance of Microsoft Sentinel SIEM/SOAR and Defender XDR deployment.
- Leading investigation and containment activities in the internal incident response team.
Experience & Qualifications required
- At least 3+ years working in Cyber / Information Security.
- AZ104 or AWS Solutions Architect Associate is essential.
- Ability to translate technical issues into business friendly / executive language.
- Experience with Bash and / or PowerShell automation is essential.
- Experience with ethical hacking tools, such as (But not limited to) nmap, Nessus, and Burpsuite.
- Practical experience of the Software Development Life Cycle and Agile frameworks.
- Fostering a positive culture of security with end users, engineers, developers, product managers.
- Excellent communication, teamwork, presentation and stakeholder management skills.
The successful candidate must have permission to work in London by the start of their employment.
Our benefits
We offer thoughtful, balanced rewards and support to help our people do their best work and live their lives outside it, this includes but is not exhaustive of:
- 25 days holiday per year in addition to bank holidays (+1 day for every year of service up to a maximum of 30 days);
- Hybrid working and flexible working hours;
- Matching pension contribution up to 7% and financial education;
- Fertility treatment leave – 5 days of leave per cycle of treatment per year;
- Maternity leave – 26 weeks of full pay followed by 13 weeks of half pay;
- Paternity leave – 6 weeks of full pay.
- Private dental and medical insurance (taxable benefit) for you and your family;
- Virtual GP for you and your family members that live in the same household;
- Various gym discounts for you and your partner;
The role will be based in our London office. However, we have flexible working arrangements available. #J-18808-Ljbffr
Senior Security Engineer employer: S-RM
Contact Detail:
S-RM Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Senior Security Engineer
✨Tip Number 1
Familiarise yourself with S-RM's culture and values. Since they emphasise a collaborative environment where ideas are welcomed, be prepared to discuss how you can contribute to this culture during your interactions with them.
✨Tip Number 2
Highlight your experience with cloud security and compliance management. Given the role's focus on multi-cloud environments, be ready to share specific examples of how you've successfully managed security in similar settings.
✨Tip Number 3
Prepare to demonstrate your technical skills in tools like Microsoft Sentinel and ethical hacking software. Being able to discuss your hands-on experience with these tools will show that you're well-equipped for the challenges at S-RM.
✨Tip Number 4
Be ready to articulate complex security concepts in a business-friendly manner. Since the role requires translating technical issues for non-technical stakeholders, practice explaining your past projects in simple terms.
We think you need these skills to ace Senior Security Engineer
Some tips for your application 🫡
Understand the Company Culture: Before applying, take some time to understand S-RM's culture and values. Highlight in your application how your personal values align with their commitment to security and employee wellbeing.
Tailor Your CV: Make sure your CV reflects your experience in Cyber/Information Security, particularly focusing on your technical skills and relevant certifications like AZ104 or AWS Solutions Architect Associate. Use specific examples that demonstrate your expertise in security design and engineering.
Craft a Compelling Cover Letter: In your cover letter, express your enthusiasm for the role and the company. Discuss your experience with security hardening standards and your ability to communicate complex technical issues in an accessible way. This is your chance to show why you would be a great fit for their team.
Highlight Relevant Experience: When detailing your work history, focus on your experience with ethical hacking tools and your involvement in incident response teams. Mention any specific projects where you improved security measures or contributed to a positive security culture within your previous roles.
How to prepare for a job interview at S-RM
✨Showcase Your Technical Expertise
As a Senior Security Engineer, it's crucial to demonstrate your deep understanding of cyber security principles. Be prepared to discuss specific tools and methodologies you've used, such as SAST, DAST, and ethical hacking tools like nmap or Burpsuite.
✨Communicate Clearly and Effectively
Since the role requires translating technical issues into business-friendly language, practice explaining complex concepts in simple terms. This will show your ability to bridge the gap between technical teams and stakeholders.
✨Emphasise Team Collaboration
Highlight your experience working with cross-functional teams, including engineering and product management. Discuss how you foster a positive culture of security and encourage collaboration to achieve secure design from project inception.
✨Prepare for Scenario-Based Questions
Expect to face scenario-based questions that assess your problem-solving skills in real-world situations. Think about past experiences where you successfully managed security incidents or improved compliance, and be ready to share those stories.
