Senior Information Security Engineer at AJ Bell

Manchester, England, United Kingdom -

Full Time

Start Date

Immediate

Expiry Date

10 Sep, 26

Salary

0.0

Posted On

12 Jun, 26

Experience

5 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Enterprise Security Platforms, Security Risk Management, SIEM, PAM, IGA, Endpoint Protection, Email/Web Gateways, Firewall Technologies, Cloud Security, Networking Principles, ISO27001, NIST, Problem Solving, Technical Communication, CISSP, Secure Infrastructure Design

Industry

Financial Services

Description

Job Description We’re recruiting a Senior Information Security Engineer to support the Chief Information Security Officer in managing and reducing information security risks across Technology Services. This is a hands-on, technical engineering role where you’ll help design, build and continuously improve the security controls, platforms and infrastructure that protect AJ Bell and our customers. You’ll be at the forefront of how we evolve our security capability, making sure our tools, systems and integrations are not only secure, but scalable, automated and effective. In many ways, you’ll be a builder of our security foundations, helping ensure we can detect, prevent and respond to threats at pace while enabling the business to move safely and confidently. Key responsibilities Lead the design, delivery and ongoing improvement of enterprise security solutions across endpoint, cloud, network, DevOps and security monitoring environments. Design and implement secure infrastructure controls aligned to industry best practice, ensuring scalability, resilience and operational effectiveness. Evaluate, select and implement new security tools and platforms, driving automation, integration and measurable value across the estate. Lead the adoption of new security technologies, ensuring smooth transition into operational support and long-term sustainability. Oversee patch management across systems and hardware, ensuring effective coordination and risk reduction. Support server hardening and secure configuration initiatives in collaboration with Infrastructure and Service Delivery teams. Provide security oversight across projects and change initiatives, ensuring security is embedded from design through to delivery. Support audits, regulatory reviews and due diligence activities, ensuring evidence and controls are robust and well maintained. Act as a key technical link between the CISO function and Infrastructure teams, ensuring alignment across security and operational delivery. Contribute to continuous improvement of cybersecurity risk management processes, helping to enhance maturity across the organisation. About you Technical expertise Proven experience implementing enterprise security platforms Strong knowledge of security risk management tools and techniques Deep understanding of security solutions (e.g. SIEM, PAM, IGA, endpoint protection, email/web gateways) Experience with firewall technologies (desirable) Knowledge of cloud security standards and solutions (desirable) Strong understanding of core IT and networking principles Awareness of the evolving threat landscape Skills and experience Experience working within frameworks such as ISO27001, NIST or similar Significant experience in IT security Financial services or e-commerce experience preferred Strong problem-solving skills and attention to detail Ability to take ownership and deliver end-to-end solutions Effective communicator, able to work across technical and non-technical teams CISSP (achieved or in progress) desirable About AJ Bell At AJ Bell, we believe investing should feel good. Whether you're looking for an ISA, pension or dealing account, whether you want to invest with the help of a financial adviser or do it yourself, we have easy-to-use solutions to suit people from all walks of life. We're one of the UK's fastest-growing investment platform businesses, trusted by everyone from professional financial advisers to first-time investors. Today, over 723,000 customers trust us to manage more than £108.7 billion of assets. By continually striving to make investing simpler and more accessible, we're helping more people take control of their financial futures. We're proud to be recognised as one of the UK's Best 100 Companies to Work For for six consecutive years, and a Great Place to Work® in 2025 and 2026, a reflection of our supportive and collaborative culture. What we offer Competitive starting salary 26 days holiday, increasing with service + buy/sell scheme + bank holidays 7% Pension with matched contributions Discretionary bonus scheme Share schemes (including free shares and BAYE) Health Cash Plan and discounted private healthcare Free gym Enhanced family leave (subject to qualifying criteria) Travel and bike loan schemes Employee Assistance Programme Life at AJ Bell Regular social events including summer and Christmas parties Learning and development opportunities tailored to you Casual dress code Friendly, supportive team environment Our ways of working At AJ Bell, our people are the heart of our culture. We believe in building strong connections by working together. That's why we offer a hybrid working model, where you'll spend a minimum of 50% of working time per month in the office. For new team members, an initial period will be spent full-time in the office to help you immerse yourself in our business and build valuable relationships with your colleagues. Inclusion & diversity We’re committed to creating an inclusive environment where everyone feels respected, supported and able to be themselves at work. We welcome applications from all backgrounds and make hiring decisions based on skills, experience and potential. Agency information This vacancy is being managed exclusively by our in-house Recruitment team. We are not partnering with recruitment agencies on this opportunity and will only accept applications submitted directly by candidates. Business Areas: Technology Services Location: Manchester or London Department: Information Security

Responsibilities

Lead the design, delivery, and improvement of enterprise security solutions across cloud, network, and DevOps environments. Act as a technical link between the CISO and infrastructure teams to reduce security risks and ensure scalable security controls.