Cyber Security Engineer - Davies Consulting

Application Deadline: 23 May 2025

Department: Risk and Compliance

Employment Type: Permanent - Full Time

Location: Home United Kingdom

Reporting To: Phil.ritchie@daviesgroup.com

Compensation: £45,000 - £55,000 / year

Work Environment: Home-based with need for travel to UK office locations

Our vision

Davies is a community of outstanding people. We welcome different perspectives, support each other's ambitions and grow together. In a fast-changing business environment, we adapt and look ahead. We succeed because we are multi-talented: in the skills of our teams, specialisms, and sector expertise. Working together, we are greater than the sum of our parts.

Our Values

• We are Connected: United under one mission and believe in our collective power to make a difference; together we are greater than the sum of our parts.
• We are Dynamic: We adapt with the environment, striving for what is next. Relentlessly seeking more for our business, clients, colleagues, and communities.
• We are Innovative: We are solution focused with an entrepreneurial mindset, empowered to discover new paths.
• We Succeed Together: We support each other to grow and value different perspectives, ideas, and experiences - making an impact on our communities.

Key Responsibilities

• Demonstrate strong security fundamentals while working hands-on with security technologies.
• Proactively assess security risks and expedite gap closure to help promote a risk-aware culture.
• Manage secure web gateways/web proxy, endpoint detection and response solutions (EDR/XDR), Microsoft Purview Firewall & email security.
• Support the vulnerability management process, perform vulnerability assessments, analyse findings, establish priorities as well as implement and coordinate remediation activities.
• Good knowledge of the operation of phishing simulation tools as well as supporting the delivery of security awareness programs.
• Assist, train and mentor cybersecurity analysts in the use of security tools, application security standards, the preparation of security reports and the resolution of security-related incidents.
• Act as an escalation point to analysts to aid in troubleshooting security incidents.
• Actively monitor and research cybersecurity threats, always be up to date with a direct or indirect threat landscape that could impact Davies business operations or technology infrastructure.
• Perform threat hunting and recommend mitigation actions.
• Assist with risk management tasks.
• Monitor and maintain security tools, such as Security Incident & Event Management (SIEM), anti-virus, micro-segmentation tooling and vulnerability management platforms.
• Review changes to determine the IT security impact.
• Assist with IT security gap and risk assessments including PCI DSS, ISO 27001, CIS Top 18 and Cyber Essentials.
• Be part of an on-call rota for escalations from SOC.
• Identify and assess newly identified vulnerabilities.
• Produce relevant documentation and reporting.
• Timely escalation of issues to Cyber Team Leader.

Skills, Knowledge & Expertise

• Highly focused customer service approach with excellent interpersonal skills.
• Experience with Microsoft on-premise and cloud platforms.
• Red teaming and penetration testing knowledge or experience.
• Ability to communicate technical information to both technical and non-technical people.
• Management of third-party relationships.
• Experience of working with or within software development teams to deliver internally and externally facing applications.
• Experience of working with data teams to ensure highly available and resilient data to support operations.
• Experience of working with technical project teams to deliver complex and large-scale infrastructure projects.
• Experience of working with IT service desk to deliver swift resolution and fantastic customer service.
• Ability to work under pressure and manage conflicting priorities to tight deadlines.
• Strong stakeholder management with a focus on excellent customer service.
• Strong attention to detail, with excellent communication skills, both written and verbal.
• Proactive and self-motivated approach to problem solving.
• Flexible and approachable.
• Self-motivated, result-driven and business-oriented.
• One or more relevant IT security qualifications from a recognized body, such as GIAC GSEC, CompTIA CySA+ and ISC2 CISSP.
• Experience working as part of a project team.
• Experience of working within regulated businesses.

Job Benefits

Davies are committed to being a diverse and inclusive workplace. We welcome candidates of all genders, gender identity and expression, neurodiversity, sexual orientation, disability, physical appearance, body size, race, age, nationality, and belief (or lack thereof). Davies benefits and employee policies are ever-evolving. Currently some of our highlights include:

• Reward platform - discounts for over 800 retailers.
• 25 days holiday (rising with service).
• EAP with virtual GP.
• 2 x paid volunteering days.
• Enhanced maternity and paternity leave policies.
• Fostering friendly and fertility support employer.
• Pension - matched contribution at 5%.
• Life Assurance (4 x basic salary).
• Development, training, and professional qualifications where applicable.