Cyber Security Technician Apprentice

Keltbray is a UK leading specialist engineering contractor offering engineering, construction, demolition, decommissioning, remediation, environmental services and reinforced concrete frame solutions. We are a key player in developing and maintaining Britain’s built environment and major civil engineering, operating in highly regulated climates and transforming sites across the UK. Our purpose is to redefine the way sustainable development is delivered. Based on our collective experience, we collaborate at the earliest stage to design and self‑deliver innovative customer solutions across technically demanding built environment and infrastructure sectors. Working in partnership with our stakeholders, we are actively contributing to economic growth, social advancement and environmental protection. Diversity & Inclusion We advocate for difference and champion diversity to foster an inclusive environment that allows our people to bring their true selves to their work every day and enable our people to thrive by promoting health and preventing harm.

The apprentice will gain the L3 Cyber Security Technician qualification and may progress into a permanent position within Keltbray.

This role is responsible for monitoring, detecting, and responding to potential security incidents, maintaining cyber hygiene across all systems, and assisting with compliance to recognised standards such as Cyber Essentials Plus (CE+).

• Assist in monitoring, analysing, and responding to alerts from security tools such as firewalls, SIEM, EDR, and SWG systems under supervision.
• Identify, triage, and escalate potential security incidents in line with defined procedures, seeking guidance when necessary. Support the investigation and remediation of security alerts and vulnerabilities alongside senior team members.
• Help operate and maintain the organisation’s vulnerability management platform (Qualys) to detect and remediate system vulnerabilities, under direction.
• Assist with automated and manual patch deployment cycles, ensuring timely remediation of identified risks.
• Contribute to regular reports summarising vulnerability trends, patch compliance, and remediation progress.
• Support the administration of endpoint protection, detection, and response solutions to safeguard against malware, ransomware, and unauthorised access.
• Assist with the configuration and management of encryption, device control, and endpoint policy enforcement.
• Help ensure devices remain compliant with baseline configurations and endpoint protection policies.
• Support monitoring and management of the organisation’s SWG platform to enforce safe and secure internet usage.
• Apply web access policies and content filtering aligned with organisational security posture, under supervision.
• Assist in investigating and reporting on web‑based security events, ensuring appropriate remediation steps are taken.
• Support the ITSD in maintaining ongoing Cyber Essentials Plus readiness through vulnerability testing, evidence gathering, and compliance validation.
• Assist with annual CE+ assessment preparation and help ensure all technical controls meet required standards.
• Work collaboratively across IT functions to remediate non‑compliance issues and improve audit readiness.

• Understanding of best practice in relation to cyber security.
• Assist in the secure onboarding and off‑boarding of users, ensuring access rights are correctly provisioned and removed.
• Assist in post‑incident reviews and help document lessons learned for continuous improvement.
• Help carry out periodic checks to ensure systems and processes comply with internal and external standards.
• Basic end‑user support/training of hardware and software.
• Good level of working IT knowledge and practices.
• Engage effectively with any ICT supplier and third parties regarding support of software, hardware and systems.
• Keep working area, cupboards, and storage area clean, tidy, safe and equipment/spares organised.

This role is based in Esher, Surrey. The work location is our head office, and training will take place remotely with online lessons per week. Monday‑Friday 8 am‑5 pm – 40 hours per week.