Senior Cyber Platforms Engineer

We are looking for an experienced Senior Cyber Platforms Engineer to join our Group Technology team in Milton Keynes. Working within the Cyber Platforms team, you will be responsible for the design, implementation, and operational support of enterprise security platforms that underpin Connells Group’s cyber strategy. The role focuses on ensuring the confidentiality, integrity, and availability of systems and data through proactive engineering, automation, and continuous improvement. You will lead on securing identity, information, and privileged access platforms while reducing operational overhead through automation and “shift-left” practices. We offer a hybrid working arrangement with 1 day per week in our Milton Keynes office.

Key Responsibilities:

• Design, implement, and maintain enterprise security platforms (e.g. Identity, Privileged Access, Information Protection, Endpoint Security).
• Lead the engineering and operational support of platforms such as Microsoft Entra ID, Purview, PAM/PIM, and Defender.
• Drive adoption of secure-by-design and Zero Trust principles across infrastructure and services.
• Troubleshoot and resolve complex platform and security incidents, ensuring timely restoration of service.
• Own problem management activities, including root cause analysis and implementation of long-term fixes.
• Develop and implement automation and scripting solutions (e.g. PowerShell) to reduce manual intervention and improve resilience.
• Support delivery of cyber and infrastructure projects, providing subject matter expertise.
• Collaborate with Architecture, GRC, Risk, and Operations teams to align solutions to business and regulatory requirements.
• Contribute to platform roadmaps, ensuring alignment with organisational cyber strategy.
• Prepare and maintain clear technical documentation, standards, and operational procedures.
• Provide mentorship and guidance to engineers and analysts within the Cyber Platforms team.
• Engage with third-party suppliers and managed service providers where required.

Day-to-Day Technical Responsibilities

• Identity & Access Management: Engineer and support Microsoft Entra ID, including RBAC, Conditional Access, and identity lifecycle.
• Support and enhance privileged access controls across PAM/PIM solutions.
• Enforce least privilege and secure administrative access (Tier-0/Tier-1 controls).
• Security Platform Engineering: Configure and optimise Microsoft Defender security controls across endpoints and servers.
• Contribute to secure configuration baselines and hardening standards.
• Support ongoing platform improvements and feature adoption.
• Automation & Operational Excellence: Develop automation for repeatable processes (e.g. access reviews, certificate lifecycle, policy deployment).
• Improve monitoring, alerting, and operational visibility across security platforms.
• Reduce manual workload through scripting and integration.
• Security Monitoring & Incident Support: Investigate platform-related security incidents and support response activities.
• Work with SOC and MSSP providers to improve detection and response capabilities.
• Contribute to continuous improvement of detection rules and playbooks.

Experience and Skills Required:

Essential:

• Strong hands-on experience in security or infrastructure engineering roles.
• Experience supporting enterprise identity platforms (e.g. Entra ID / Active Directory).
• Experience with security tooling such as Microsoft Defender, Purview, or equivalent.
• Proven experience in incident, problem, and change management processes.
• Experience working with service management tools (e.g. ServiceNow).
• Strong troubleshooting skills across cloud and hybrid environments.
• Experience scripting/automation (e.g. PowerShell).
• Ability to communicate complex technical concepts to both technical and non-technical stakeholders.

Desirable:

• Experience implementing enterprise-scale security platforms.
• Exposure to Zero Trust architecture and modern security frameworks.
• Experience working in regulated or large-scale enterprise environments.
• Advanced security certifications (e.g. Microsoft Security Expert, CISSP, CCSP).
• Degree in Cyber Security, IT or related discipline.

Qualifications:

• Relevant technical certifications or equivalent experience (e.g. Microsoft Security, Azure, or Identity certifications).
• ITIL Foundation (or equivalent experience working within ITIL environments).
• Strong troubleshooting skills across cloud and hybrid environments.

Please note that we are unfortunately unable to provide visa sponsorship for this position. Applicants must have the right to work in the UK. Connells Group UK is an equal opportunities employer and positively encourages applications from suitably qualified and eligible candidates regardless of sex, race, disability, age, sexual orientation, transgender status, religion or belief, marital status, or pregnancy and maternity.