Securing business data

Careers at CNS Group


Cyber Security Engineer

Working Hours

The role holder’s normal working hours will be 08:30 – 17:30. Where required the role holder will provide shift cover to L2 SOC Analysts; either 07:00-19:00 or 19:00-07:00.

Role Description:

The ideal candidate will be an enthusiastic infrastructure security professional with experience in the design, delivery and continuous improvement of multi-vendor technologies, delivering CNS Group’s Managed Security Services (MSS) platform and internal IT infrastructure.

The role, working in the Services Team, will ensure that all relevant standards, technical configurations and platform updates to deliver Managed Security Services and Internal IT are met and exceeded.

Understanding of security fundamentals, across multiple domains of security and a passion for security will be critical to the role.

Knowledge of security appliances, networking devices, common server operating systems and log management is required.

This role requires the role holder to attain UK SC Clearance.

Primary Responsibilities:

The Cyber Security Engineer is part of a team who's role it is:

To ensure the MSS platform remains fully operational to internal standards and compliance requirements, including but not limited to – PSN, ISO27001, and Cyber Essentials plus (CE+).

To maintain MSS client deployed platforms to ensure optimisation, availability and compliance according to the client framework.

To build capacity into MSS and Internal IT platforms to meet Services demand

To Deliver Tuning activities through deployment of a Managed Security Service platform.

To assist on internal projects that impact or involve Infrastructure technologies.

Specific Responsibilities:


The Cyber Security Engineer will be responsible for implementing the necessary technical configurations to newly deployed Managed Service platforms, including development of specific log interrogation packages, design and build alarm logic to compliance and cyber security frameworks. Provide technical assistance to update systems and platforms as defined by the Infrastructure Team work program. In addition, the Cyber Security Engineer will be responsible for the remediation activities following internal penetration testing and vulnerability scans.

Deliver work packages in internal projects as a technical resource.

Responsible for own development of technical skill set for current technologies and work with line management to ensure a training program is in place to account for future technologies.

Build the necessary relationships inside CNS Group to develop knowledge and ensure platforms meet current and future demands.

Working in conjunction with CNS SOC Analysts in the operational review of system, alarm and event data collected in normal operation and assist in the delivery of continuous tuning initiatives of client deployed Managed Services Platforms. Both activities can include output reports and direct client engagement.



  • Linux Debian system administration 
  • MySQL administration and scripting
  • Regular Expressions development (RegEx)
  • Good cyber security awareness



  • SIEM system Administration
  • Syslog Server Administration (SPLUNK, KIWI)
  • Security systems administration (IDS, Firewalls, Etc.)
  • Windows Administration
  • Suricata 
  • Nagios 
  • SolarWinds

Mandatory Non-Technical Skills

The candidate should also be SC cleared or be eligible to undertake the process immediately. The candidate must also have resided in the UK for at least 3 years.

  • Excellent communication (both written and orally)

  • Able to deliver technical output to non-technical audiences

  • An attention to detail (but not at the cost of pragmatism)

  • Providing support, oversight, knowledge sharing and assistance to other consultants

  • Team player

  • Able to manage own time and workload as directed by Line Manager

  • Confident in their abilities and can work under pressure to deadlines

  • Knowledge of Protective Monitoring (GPG-13), PCC DSS, ISO27001 compliance regimes

Desired Additional Qualifications

Exposure or experience in the following is considered highly desirable:

  • Industry standard Cyber Security qualifications e.g. GIAC, Cisco Sec Ops, EC-CEH
  • Further education qualification in Cyber Security discipline e.g. CISSP

Success Criteria/ Objectives

  • Delivery of work program defined by Line Management
  • Delivery of Tuning tasks as per CNS Group deployment schedules
  • Adherence to operational procedures
  • Resolution of logged incidents within SLA

Note: These success factors will be tied to the role holder’s performance related targets (see below) and will be reviewed and adjusted accordingly each quarter in line with the changing needs of the practice.





negotiable on experience



  • Workplace Pension (3% Employer Contribution)

  • Employee “Thanks Reward Scheme”

  • Income Protection Benefit

  • Death in Service Benefit

  • 20 Days Holiday (increasing 1 day per year served)

  • Birthday day additional holiday

Please contact for more information. For further job opportunities follow us on LinkedInFollow CNS on Linkedin and join our LinkedIn groups


Winner - Best Managed Security Service


Financial Service Technology Awards

Best use of IT in Retail Banking
For implementation of IPT at Duncan Lawrie Bank.

Consulting Practice of the Year

CNS Hut3 have been shortlisted as finalists in the Cyber Security Awards, which seek to recognise talent and achievement within the cyber security industry.
Banking Tech Awards 2012 Logo shortlist

BankingTech Security Initiative of the Year

CNS were shortlisted for their AntiPhishing Security Initiative with Metrobank.