Job Specifications
[Up to c. £350k Comp Package (or equivalent) | Hybrid Working]
Role Overview
We’re supporting a fast-scaling, technology-driven investment firm as it builds out its core security capability from the ground up. This hire will take a central role in shaping how detection, response, and foundational security engineering are implemented across the organisation’s infrastructure and cloud estate. Working directly alongside the CISO, you will help define what “good” looks like across monitoring, response engineering, identity architecture, and preventative controls. This is not a narrow SOC or ticket-driven position - it is an opportunity to architect and operationalise a modern detection and response function in a largely greenfield environment, with meaningful ownership and long-term impact...
Key Responsibilities
Design and mature the firm’s detection and response capability, including signal generation, alert quality, telemetry coverage, and response workflows
Implement high-fidelity detection mechanisms such as deception technologies, behavioural monitoring, and anomaly-based alerting
Build and maintain security controls spanning infrastructure, cloud services, and internal applications
Contribute to the design of identity and authentication architectures, including certificate services and machine-to-machine trust models
Partner closely with engineering and infrastructure teams to integrate security controls into build and deployment pipelines
Define practical security standards that align with regulatory expectations while supporting business velocity
Lead incident investigation efforts when required, performing root-cause analysis and driving durable remediation
Make architectural decisions that support long-term resilience, scalability, and risk reduction
Continuously evaluate gaps in visibility and introduce improvements to monitoring coverage
What You’ll Bring…
5-12 years’ experience in security engineering, detection engineering, or incident response within complex technical environments
Strong practical exposure to security monitoring, telemetry pipelines, SIEM platforms, or custom detection tooling
Experience designing detection strategies rather than simply triaging alerts
A background in systems engineering, software development, or infrastructure operations
Confidence working across Linux-based systems and cloud environments
Experience contributing to identity, certificate, or authentication architectures
Ability to balance preventative controls with practical operational realities
Clear communication skills, comfortable partnering directly with senior stakeholders
A track record of independently delivering thoughtful, well-engineered security improvements
...
About the Company
At Techfellow, we connect top tech talent with leading financial firms worldwide. With a deep understanding of your business and tech needs, we match exceptional engineers, developers, and cybersecurity experts to the right opportunities.
Fit is our priority. We're selective, focusing on quality over quantity to find the best candidates for our valued partners!
Know more