Senior Cyber Engineer at Triple Point

London, England, United Kingdom -

Full Time

Start Date

Immediate

Expiry Date

26 Feb, 26

Salary

0.0

Posted On

28 Nov, 25

Experience

5 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Microsoft 365 Security, Azure Cloud Security, Zero Trust Principles, Identity and Access Management, Multi-Factor Authentication, Privileged Access Management, Data Loss Prevention, Identity Governance, Security Architecture, Problem-Solving, Communication Skills, SIEM/XDR Tooling, Infrastructure-as-Code, Salesforce Security Enhancements, Cloud Security, Security Engineering

Industry

Financial Services

Description

Since 2004, we’ve been bringing investment ideas to life and connecting capital with the right people and opportunities. Today, we manage more than £2.5 billion for a broad range of investors across five key investment strategies: Private Credit, Social Housing, Clean Heat, Energy and Venture. These strategies underpin the innovative range of investments we offer to both private (retail) and institutional clients. There are 230+ employees at Triple Point, all committed to leaving the world demonstrably better than we found it. That’s why we’re a certified B Corp, signed up to the Principles for Responsible Investment, and were named a Sunday Times 'Best Place to Work 2025'. If this sounds like an environment where you would flourish, then read on… The Function & Team The Technical Operations & Cyber team safeguards Triple Point’s infrastructure and ensures our technology runs smoothly, securely and reliably. The team supports colleagues with day-to-day IT needs while maintaining robust systems and cyber resilience to keep customers' data & operations safe and effective. The team sits within the wider Digital & Tech team. The Role We are seeking a Senior Cyber Engineer to lead project-based security engineering work, with a focus on securing identity, devices and cloud platforms. You will serve as Triple Point’s specialist in identity, access, and cloud security controls, supporting the secure operation and working predominantly within our Microsoft 365, Azure, and Salesforce environments. Working closely with the Head of Technology Operations & Cyber, internal stakeholders, our IT MSP, and our SOC, you will ensure our environment is secure, resilient, and well-governed. This is a hands-on, delivery-focused role owning security engineering projects end-to-end from design and planning through to implementation, documentation and transition into BAU. Key Responsibilities Security Engineering (Identity, Device & Cloud) Define, implement, maintain and enhance security baselines for: Identity and access management Microsoft 365 services (email, collaboration, file sharing) MDM / Intune device management (enrolment, compliance, baselines, app protection, conditional access enforcement) Improve overall security posture in line with Zero Trust principles. Roll out new cloud security features and controls. Integrate SaaS platforms for secure SSO and lifecycle management. Continuously review and strengthen our cyber posture using industry-standard security benchmarks, configuration assessments and cloud security recommendations. Establish, champion and evolve patterns for: Application onboarding and SSO Admin access and just-in-time elevation Use of service accounts and service principals 2. Detection, Response & Assurance Enhance identity and access logs and signals within detection and response tooling. Tune identity-related alerts in partnership with SOC analysts. Support investigations into identity-related security incidents and lead root-cause analysis. Contribute to internal/external audits, penetration tests and regulatory reviews relating to identity, access or cloud security. 3. Governance, Documentation & Ways of Working Support assurance activities, including internal/external audits, penetration tests and regulatory reviews relating to identity, access and cloud security. Maintain documentation for identity and cloud security configurations, guardrails and principles. Contribute to policies, standards and procedures related to identity, access and cloud security. Support the business in embedding consistent security-by-design practices. Skills & Experience Essential Strong understanding of Microsoft 365 security capabilities, Azure cloud security concepts and Zero Trust principles. Significant hands-on experience administering and securing identity and access management platforms in a complex enterprise environment. Strong knowledge of adaptive access and MFA, RBAC and least privilege, Privileged Access Management, Data Loss Prevention, Identity Governance & access reviews, application onboarding and modern authentication (SAML/OAuth/OIDC). Proven experience delivering end-to-end security or platform engineering projects in cloud environments. Ability to translate regulatory and security requirements into pragmatic technical controls. Excellent communication skills across technical and non-technical stakeholders. SIEM/XDR tooling experience, such as Microsoft Sentinel. Experience contributing to security architecture and design decisions. Self-starter mindset — able to work independently and as part of a team. Strong problem-solving approach, with willingness to learn, adapt and figure things out. Desirable Experience with Infrastructure-as-Code and automation, e.g., Bicep, ARM, Terraform, PowerShell. Experience in a regulated financial services environment, ideally FCA-regulated (not essential) Experience implementing Salesforce security enhancements (e.g., Salesforce Shield). Qualifications Essential Relevant certifications such as Identity & Access Administrator (e.g., SC-300 equivalent) and Cloud Security Engineer (e.g., AZ-500 equivalent), or equivalent hands-on experience. Strong grounding in cyber security principles through training, qualifications or demonstrable experience. Desirable Industry certifications such as CISSP, CCSP, SSCP or similar. Degree in Computer Science, Information Security or a related discipline, or equivalent experience. Success Measures Own It Operates as a self-starter, taking initiative and driving work forward independently while knowing when to collaborate. Demonstrates a strong problem-solving mindset, with willingness to learn and figure things out. Delivers high-quality engineering outcomes, with rigour, documentation and technical ownership. Takes visible accountability for decisions, follow-through and security outcomes. Stay Curious Proactively learns and applies new security and cloud capabilities. Take Thoughtful Action Simplifies complexity, prioritises effectively and maintains momentum. Pull Together Collaborates constructively across Technology Operations, SOC, MSP partners and Compliance. Be Generous Shares knowledge, supports colleagues, and contributes beyond core responsibilities. Why Join us? You’ll join a talented, collaborative team in a connected environment where ideas and initiative are valued. We offer a competitive salary, a comprehensive benefits package, and genuine opportunities for growth and progression. Opportunities for professional development and career progression. At Triple Point, high performance means living our values every day: · Stay Curious. · Be Generous. · Take Thoughtful Action. · Pull Together. · Own It. In line with our values Stay Curious and Take Thoughtful Action every employee has access to ChatGPT Enterprise and is encouraged to explore how AI and automation can enhance their work. We see technology as a co-pilot, helping us improve efficiency and insight while keeping decisions grounded in thoughtful human judgment. Triple Point offers a wealth of benefits including a contributory pension, hybrid/flexible working and ongoing learning and development opportunities. Check out our comprehensive list of benefits HERE. Apply today for further information! Triple Point is dedicated to providing fair and equal opportunities for all individuals, including both current and potential employees. Discrimination of any kind based on factors such as age, disability, gender, sexual orientation, pregnancy, race, ethnicity, religion, gender identity, or marital status is not tolerated by the company. Our aim is to create a welcoming and diverse work environment where people from all walks of life feel valued and supported. We actively encourage individuals from various backgrounds to apply for job vacancies and become part of our team. STRICTLY NO AGENCIES

Responsibilities

The Senior Cyber Engineer will lead project-based security engineering work focused on securing identity, devices, and cloud platforms. This role involves owning security engineering projects from design to implementation and ensuring the environment is secure and resilient.