We are a technology business operating in the global energy sector. ENSEK have become the go-to option for top energy suppliers across the globe. Why? Because our technology is a significant step change away from the legacy systems that have historically dominated the market. It’s also massively cheaper to adopt the ENSEK solution, with no loss in customer service or standards. But by far the biggest reason why ENSEK is the best choice in energy supplier software, is because of the people who work here and their endless enthusiasm, energy, and the way they support their colleagues. All our clients comment on what great people we have. Our people are our superpower. That is where you come in. ROLE SUMMARY: ENSEK designs and develops software that enables energy retailers to manage their energy consumers. ENSEK’s Ignition platform is a SaaS tool that provides energy suppliers with the tech to manage energy consumers - from quote to sign up, billing, collection, and service, all in real-time. As a Cyber Security Engineer, you will play a key role ensuring ENSEK’s security posture aligns with industry best practices and regulatory requirements. Successful candidates will be responsible for the tools, systems and technology related to the security of the ENSEK Combined Information Security & Privacy Management System. These include endpoint security, code scanning and any other systems or tools used to secure the environment and infrastructure. Candidates will be managing the setup, configuration, integration and enduring runtime of these systems, ensuring the security ecosystem is maintained and managed in line with the strategy set by the Head of Cyber Security & Technology Risk. Candidates will work cross-functionally with engineering, product, legal, data and business assurance teams to maintain secure systems, assist in the conduct of audits, and implement strategic and tactical fixes for issues and vulnerabilities. The role will also include responding to security incidents, acting as an SME within the field, assisting in security assessments and reacting to emerging security threats. Cyber Security Engineers play a crucial role in protecting the company’s reputation, maintaining customer trust, and ensuring the organisation remains secure in a rapidly evolving cloud environment. KEY RESPOSBILITIES: Engineer, implement, administer and monitor security measures for the protection of computer systems, networks and information. Function as a technical security subject matter expert and ensure confidentiality, integrity and availability of information systems are maintained to protect customer, corporate and third-party data. Assist in risk evaluation and management across systems and solutions. Work alongside the Head of Cyber Security & Technology Risk to maintain security infrastructure. Auditing and organising the security and testing of systems and infrastructure. Create strategic and tactical remediation plans for vulnerabilities across the tech estate. Respond to attack notifications or tickets, implement appropriate investigation and escalation responses to incidents. Build relationships with enterprise technology experts and business leaders. Collaborate with Platform & SRE teams to create ‘last line of defence’ checklist to prevent production vulnerabilities. Document, communicate, and conform to processes related to security monitoring Analyse malicious files through use of static and dynamic analysis and provide expertise in cyber forensics for identifying threats. Identify current security exposures across estate and provide a review on new solutions being implemented. Work alongside key individuals to ensure patching schedules across business infrastructure and client environments are upheld. Creation and review of relevant policy documentation where appropriate. Provide subject matter expertise to business surrounding security related content. SKILLS: Proven experience in vulnerability research & assessment Core knowledge within Solution/System/Software/Network/Hardware Design principles Experience in designing and enforcing information security & privacy controls Strong customer and stakeholder relationship-building skills Experience in day-to-day security operations, including involvement in design or providing technical support for policy design Background in security or willingness to learn new skills Process implementation and improvement Familiarity with industry best practice surrounding vulnerability management processes Familiarity with data privacy laws and regulatory requirements across multiple regions. Experience in securing cloud-based technologies (e.g., AWS, GCP) Ability to work autonomously and lead projects where required Experience in previous software development and/or security focused roles within a SaaS or cloud-based environment.