Senior Cyber Platforms Engineer in Northampton

Working within the Cyber Platforms team, the Senior Cyber Platforms Engineer is responsible for the design, implementation, and operational support of enterprise security platforms that underpin Connells Groups cyber strategy. The role focuses on ensuring the confidentiality, integrity, and availability of systems and data through proactive engineering, automation, and continuous improvement. The post holder will lead on securing identity, information, and privileged access platforms while reducing operational overhead through automation and shift-left practices.

Key Responsibilities:

• Design, implement, and maintain enterprise security platforms (e.g. Identity, Privileged Access, Information Protection, Endpoint Security).
• Lead the engineering and operational support of platforms such as Microsoft Entra ID, Purview, PAM/PIM, and Defender.
• Drive adoption of secure-by-design and Zero Trust principles across infrastructure and services.
• Troubleshoot and resolve complex platform and security incidents, ensuring timely restoration of service.
• Own problem management activities, including root cause analysis and implementation of long-term fixes.
• Develop and implement automation and scripting solutions (e.g. PowerShell) to reduce manual intervention and improve resilience.
• Support delivery of cyber and infrastructure projects, providing subject matter expertise.
• Collaborate with Architecture, GRC, Risk, and Operations teams to align solutions to business and regulatory requirements.
• Contribute to platform roadmaps, ensuring alignment with organisational cyber strategy.
• Prepare and maintain clear technical documentation, standards, and operational procedures.
• Provide mentorship and guidance to engineers and analysts within the Cyber Platforms team.
• Engage with third-party suppliers and managed service providers where required.

Day-to-Day Technical Responsibilities:

• Identity & Access Management: Engineer and support Microsoft Entra ID, including RBAC, Conditional Access, and identity lifecycle.
• Support and enhance privileged access controls across PAM/PIM solutions.
• Enforce least privilege and secure administrative access (Tier-0/Tier-1 controls).
• Security Platform Engineering: Configure and optimise Microsoft Defender security controls across endpoints and servers.
• Contribute to secure configuration baselines and hardening standards.
• Support ongoing platform improvements and feature adoption.
• Automation & Operational Excellence: Develop automation for repeatable processes (e.g. access reviews, certificate lifecycle, policy deployment).
• Improve monitoring, alerting, and operational visibility across security platforms.
• Reduce manual workload through scripting and integration.
• Security Monitoring & Incident Support: Investigate platform-related security incidents and support response activities.
• Work with SOC and MSSP providers to improve detection and response capabilities.
• Contribute to continuous improvement of detection rules and playbooks.

Experience and Skills Required:

Essential:

• Strong hands-on experience in security or infrastructure engineering roles.
• Experience supporting enterprise identity platforms (e.g. Entra ID / Active Directory).
• Experience with security tooling such as Microsoft Defender, Purview, or equivalent.
• Proven experience in incident, problem, and change management processes.
• Experience working with service management tools (e.g. ServiceNow).

Desirable:

• Experience implementing enterprise-scale security platforms.
• Exposure to Zero Trust architecture and modern security frameworks.
• Experience working in regulated or large-scale enterprise environments.

Qualifications:

• Relevant technical certifications or equivalent experience (e.g. Microsoft Security, Azure, or Identity certifications).
• ITIL Foundation (or equivalent experience working within ITIL environments).
• Strong troubleshooting skills across cloud and hybrid environments.

Connells Group UK is an equal opportunities employer and positively encourages applications from suitably qualified and eligible candidates regardless of sex, race, disability, age, sexual orientation, transgender status, religion or belief, marital status, or pregnancy and maternity.