Senior Cyber Security Engineer

At Aberdeen, our ambition is to be the UKs leading Wealth & Investments group. Strengthening talent and culture is a strategic priority to attract and retain the industrys best talent. Our people put our stakeholders at the heart of everything they do by helping us to make a positive difference to the lives of our clients, customers, colleagues, shareholders, and society. We are focused on growing our direct and advised wealth platforms and repositioning our specialist asset management business to meet client demand, supported by leading technology and talent.

The Security, Resilience and Protection departments safeguard customer assets and data in our changing digital world. An exciting opportunity has arisen for an experienced and ambitious Security Engineer to join the team.

Are you passionate about cyber security? Do you want to be part of a growing, collaborative, and supportive engineering team? Do you want to learn and expand your skills as part of a digital transformation journey?

This role contributes to the evolution of the cyber security engineering team and collaboration across the enterprise to develop a best-in-class engineering function using emerging technologies and innovative working practices. It promotes a learning, creative and collaborative culture to deliver high quality outputs. Reporting to the Cyber Security Engineering Manager, you will design, implement and maintain next-generation detection and log management platforms, at the intersection of SIEM engineering, cloud security and advanced log pipeline management, ensuring world-class detection fidelity, threat visibility and compliance across environments.

You will help deliver improvements across Security Data & Analytics, Security Automation, Incident Response and Threat Detection. You will work with the Cyber Security Operations Centre, wider security functions, 3rd party security suppliers, and global IT and business teams. If you thrive on solving complex security challenges, this role is for you.

As part of the Cyber Security Operations team, you will support:

• Security Platform Optimisation across endpoint, network, cloud and logging technologies
• Security Orchestration Automation and Response, building security automation playbooks and integrations
• Security Data & Analytics, onboarding data and developing detection logic and analytics
• SOC Architecture, developing interface definitions and security guidelines
• Incident response as part of the Cyber Security Incident Response Team for cyber incidents

You will need demonstrable experience in cyber security engineering or aligned functions, with experience of security platform optimisation covering endpoint, network and cloud security and logging technologies. A deep understanding of SIEM and log ingestion technologies, solid knowledge of SOAR tools, AV, CSPM, EDR/XDR technologies, and a commitment to staying up to date with evolving threats and new technologies are ideal. Specifically:

• SIEM Engineering & Operations: Development of advanced detection rules, correlation searches, and playbooks to improve threat detection and response
• Onboarding, parsing, and data normalisation of log sources
• Design, development, configuration and maintenance of SIEM alerts to support SOC Operations
• Log Management & Data Engineering: Engineer and maintain log pipelines using Cribl to optimise ingestion, filtering, routing and replay
• Work on intelligent log transformation, data enrichment and routing strategies
• Architect scalable solutions for log archival, data rehydration and retention compliance
• Cloud Security: Leverage Azure-native security services such as Defender XDR, Defender for Cloud, Azure Monitor and Azure AD
• Implement security monitoring, alerting and automation across Azure logging and IaaS/PaaS/SaaS workloads
• Integrate Azure EventHubs, Log Analytics with knowledge of Kusto Query Language (KQL) and SPL to optimise data pipelines and detection engineering

There’s more to working life than a good salary. We offer an environment where you can learn, get involved and be supported, including 40 days annual leave, a 16% employer pension contribution, a discretionary performance-based bonus (where applicable), private healthcare and flexible benefits including gym discounts, season ticket loans and access to an employee discount portal.

Our business is structured around three areas: Interactive Investor, Investments and Adviser, focused on meeting our clients evolving needs. We are proud to be a Disability Confident Committed employer. If you have a disability and would like to apply to UK roles under the Disability Confident Scheme, please notify us in the candidate questionnaire. One of our team will support you through the process.

We adopt a blended working approach, combining in-office collaboration with flexible work from home. We are committed to an inclusive culture where diverse perspectives drive our actions. If you need assistance with your application or an adjustment to interview arrangements due to a disability, please let us know and we will help. We are committed to a workplace free from unfair or unlawful treatment and value diversity across educational and professional backgrounds, experience, cognitive and neurodiversity, age, gender, identity, sexual orientation, disability, religion or belief and ethnicity.