Senior Cyber Security Technical Engineer in Stevenage

An exciting opportunity has arisen within our newly established Cyber Security Team for a Senior Cyber Security Technical Engineer to join our shared ICT partnership between East Herts Council and Stevenage Borough Council. This is a senior, hands‐on technical role and you will play a critical role in protecting essential public services from evolving and increasingly complex cyber threat landscape, helping to ensure that vital council services remain secure, resilient and available to the communities we serve.

As a key member of the team, you will lead on the design, implementation and continuous improvement of robust cyber security controls aligned to recognised standards and best practice. You will support compliance with relevant regulatory and assurance frameworks while embedding a risk‐based, resilience‐focused approach to security across both councils.

Our Cyber Security Team Is Responsible For:

• Designing, developing and managing enterprise security architecture and controls.
• Proactive vulnerability management, risk analysis and threat mitigation.
• Continuous security monitoring and effective incident detection and response.
• Strengthening cyber resilience across infrastructure, systems and cloud services.
• Achieving and demonstrating cyber security best practices, regulatory requirements, and meeting compliance.

Beyond operational delivery, the team is driving forward a modern, intelligence‐led cyber capability. We are investing in enhanced tooling, automation and emerging technologies to continually improve our defensive posture. We also work collaboratively to build a strong security culture through targeted awareness initiatives and technical engagement with colleagues across the organisation.

You will work closely with ICT colleagues, other council teams, stakeholders, elected members, external groups and trusted third‐party suppliers to strengthen organisational cyber resilience and enable secure digital transformation.

This role requires deep technical expertise across a broad range of security technologies, with particular emphasis on Microsoft security ecosystems and Fortinet solutions. You will be expected to provide technical leadership, contribute to strategic security planning, and act as a subject matter expert within the partnership.

About You:

You are a highly skilled cyber security professional with extensive hands‐on experience in securing complex enterprise environments. In this senior, technical role, you will act as a subject matter expert, providing advanced guidance, architectural insight and operational leadership across the organisations cyber security landscape. As a key escalation point, you will take ownership of high‐severity incidents, advanced persistent threats and technical challenges beyond first‐ and second‐line capabilities. You will design, implement and optimise security controls, and ensure robust monitoring, detection and response across networks, endpoints, cloud platforms and identity systems. You will work directly with security technologies to safeguard the councils digital services, performing deep technical investigations, threat analysis and security tuning, while ensuring compliance with regulatory, assurance and industry frameworks.

Key Responsibilities Include:

• Providing advanced third‐line cyber security support and technical leadership across on‐premises, hybrid and cloud environments (Microsoft 365 and Azure).
• Leading technical investigation, containment and eradication of complex incidents including ransomware, targeted phishing, insider threats and lateral movement detection.
• Designing, deploying and optimising enterprise security solutions including EDR/XDR, SIEM, firewalls, network segmentation, VPNs and identity & access management controls.
• Conducting in‐depth forensic analysis of compromised endpoints, network traffic and system logs to identify root cause, attack vectors and systemic weaknesses.
• Performing advanced vulnerability management, configuration audits and security posture assessments, translating findings into actionable remediation plans.
• Developing and maintaining robust technical documentation including architecture diagrams, hardening standards, playbooks and knowledge base articles.
• Advising on security architecture for new services, cloud migrations and digital transformation initiatives, ensuring resilience, least‐privilege access and secure design principles.
• Keeping abreast of emerging cyber threats, TTPs (Tactics, Techniques and Procedures), threat intelligence feeds and advanced attack techniques, proactively applying insights to enhance detection and prevention.

Flexibility in working hours is required, as occasional evenings and weekends may be necessary to support incident response or critical operational activities. A full UK driving licence with access to a vehicle is desirable.

Our Benefits:

• Pension Scheme: We offer a career average pension scheme, providing generous benefits upon retirement, as well as a lump sum and pension for dependants.
• Flexible working: available upon request, subject to operational requirements.
• Part time and Job share opportunities – all our full‐time vacancies are open to job share unless otherwise stated.
• A variety of different types of paid and unpaid leave covering emergency and planned leave, maternity, paternity, adoption and parental leave.
• 25 days holiday rising to 31 days (depending on Local Government service).
• An extensive range of learning and development opportunities.
• Employee Assistance Programme – 24/7 confidential advice and support on personal, work, family and relationship issues.
• Season ticket loans and discounts for public transport.
• Cycle to Work scheme.
• Stevenage Credit Union – secure savings, free life insurance and access to cheap loans.
• Employee Discounts – via monthly paid membership of the Civil Service Sports Council (CSSC).
• Discounted Health and Fitness membership.
• Trade Unions – for a small fee, all employees have the opportunity to join a trade union.

How to Apply:

For an informal discussion about this role please contact: Name: Chris Tompsett Job Title: Cyber Security Manager Email: Chris.Tompsett@example.com Closing date for receipt of applications: 31st March 2026 Interviews will be held week commencing: 20th April 2026 Please note that if we receive a large volume of applications for this role, we reserve the right to close this vacancy ahead of the published closing date.

Stevenage Borough Council (SBC) is committed to safeguarding and promoting the welfare of children, young people and vulnerable adults and expects all staff, volunteers and recruitment candidates to share this commitment. SBC shall take all reasonable steps to employ staff who are safe to work with children, young people and vulnerable adults. For posts identified with regular contact with these groups applicants will be required to undertake a Value Based Interview. The council supports the legislative requirements for employing and maintaining safer staff and the guidance specified by Hertfordshire Safeguarding Adults Board.

Stevenage Borough Council is committed to Equal Opportunities for All.