Security Engineer

Join one of the UK’s fastest growing and award-winning banks.

We are a team of ambitious, passionate, hardworking, and committed people who have successfully created and launched one of the UK’s newest specialist property finance banks. As we embark on an exciting journey of growth, we are seeking exceptional new team members who possess both the ambition and drive to contribute to our vision. At GB Bank, we believe that career progression should not only be achievable but accelerated, enabling our employees to reach their potential in a supportive and dynamic atmosphere.

Our environment is fast‑paced and collaborative, where your efforts are recognised, rewarded, and make a tangible impact. We take pride in fostering an open and inclusive culture that not only embraces change but also encourages continuous learning and professional development.

The Security Engineer is responsible for providing in‑house security expertise and overseeing relationships with outsourced security service providers. The role focuses on strengthening the configuration and security of GB Bank’s core infrastructure and security platforms, while acting as a technical subject matter expert across key SaaS and PaaS environments. This role will work closely with technology stakeholders, will support the development and execution of effective security and technology strategies.

• Act as the in‑house subject matter expert for information security, providing specialist guidance and support to the IT team.
• Design, implement, and maintain security tools, technologies, and controls across infrastructure, networks, and applications.
• Monitor security alerts, investigate incidents, and coordinate effective response and remediation activities in collaboration with the outsourced Security Operations Centre (SOC).
• Build, automate, and continuously improve security processes, including logging, threat detection, identity and access management (IAM), patching, and backup controls.
• Manage and enhance identity and access controls, ensuring adherence to least privilege and zero‑trust principles.
• Lead security reviews and penetration testing activities, tracking remediation actions through to completion.
• Develop and maintain security policies, standards, procedures, and technical documentation.
• Stay up to date with emerging threats, vulnerabilities, exploits, and industry best practices, proactively assessing their potential impact.
• Support standardised, secure system builds aligned with recognised frameworks (e.g. CIS benchmarks) and contribute to compliance initiatives such as ISO 27001, GDPR, and other relevant regulatory requirements.

• 5+ years’ of experience working with Microsoft 365 enterprise security capabilities, including identity, compliance, and threat protection features.
• Strong technical understanding of operating systems and cloud platforms, with hands‑on experience across Azure and AWS environments.
• Practical experience implementing and operating Microsoft Sentinel, including alerting, investigation, and response workflows.
• Experience working with Cisco network security technologies, such as firewalls, VPNs, and intrusion prevention solutions.
• Solid understanding of zero‑trust security architecture and modern identity platforms.
• Experience working within privacy, governance, and regulatory frameworks, with exposure to standards such as GDPR and ISO 27001.
• Demonstrated ability to design and deliver internal security awareness and education programmes.
• Relevant security certifications (e.g. Microsoft Security, CISSP, OSCP, GIAC, CEH, Security+) or equivalent practical experience.
• Ability to work collaboratively whether it’s gathering requirements from business teams or collaborating with engineers to deliver the right solution.
• Experience optimising data systems for performance and efficiency, and you're always looking for ways to make things run smoother and faster.
• You take pride in writing clear, useful documentation, and following (or helping define) best practices for data transformation and modelling.
• Ability to work in collaborative environments, participating in code reviews, and sharing ideas to continuously improve the team’s output. Evidence of working closely with the management team to prioritise business and information needs for data.
• Strong entrepreneurial and team spirit, balanced by a healthy sense of autonomy.

• 8% company pension contribution and 3% individual contribution (which you can opt to increase)
• 25 days holiday every year plus bank holidays on top
• Private medical cover with BUPA - includes no excess and you can add family
• Death in service at 4 x base salary with Aviva
• Mental health support - through a helpline and counselling sessions
• Enhanced maternity, paternity and adoption leave

• Location: London-based (3+ days in the office)
• Salary: Competitive
• Hours: 35 Hours per week

We are an equal opportunities employer and positively encourage applications from suitably qualified and eligible candidates, regardless of their age, sex, race, disability, sexual orientation, gender reassignment, religion or belief, marital/civil partnership status, or pregnancy and maternity.

At GB Bank, we value privacy and data protection rights. We have longstanding data protection culture and promote robust ethical standards in data management. Please read our Privacy Notice in relation to our recruitment activities before submitting your application to work with us.