Senior Cyber Security Engineer

  • Department for Business, Energy & Industrial Strategy
  • London, UK
  • 09/07/2024
Full time Data Engineering Business Intelligence Biostatistics Cybersecurity

Job Description

£43,177 - £57,550
London: £46,800 to £57,550 / National: £43,177 - £54,004 (including allowance)
A Civil Service Pension with an average employer contribution of 27%

Job grade

Senior Executive Officer

Contract type


Business area

DBT - CS - Digital, Data and Technology

Type of role

Administration / Corporate Support
Information Technology

Working pattern

Flexible working, Full-time, Part-time


Belfast, Birmingham, Cardiff, Darlington, Edinburgh, London, Salford

Job summary

If you would like to find out more about the role, the Cyber team and what it’s like to work at DBT, we are holding a Hiring Manager Q&A session for this role where you can virtually 'meet the team' on Wednesday 24th July at 12:30pm. Please click here to book your spot.

About us

The Department for Business and Trade (DBT) is the department for economic growth. The Digital, Data and Technology (DDaT) directorate develops and operates tools and services to support businesses to invest, grow and export, creating jobs and opportunities across the country.

About the role

This role sites within the Department for Business and Trade’s SOC (Security Operations Centre), reporting to the Principal Cyber Engineer. The SOC is responsible for identification and mitigation of threats, both internal and external to the security of DBT. This role is to support these actions by creating new capabilities, supporting existing capabilities and provide expertise to analysts when required.

Focussing on supporting the delivery of the monitoring and development aspects of DBT’s TOM (Target Operating Model), this role will involve development of security tools, providing cyber security advice to the development community in DBT to ensure best practice is being followed.

This role will be suitable for an individual with a DevSecOps (Development and Security Operations) background or someone who has skills in both development and Cyber Security.

Job description

You will be:

  • Supporting the Principal Cyber Security Engineer and SOC Manager in the implementation of the monitoring and improvement roadmap
  • Identifying areas of improvement within the SOC and building a plan to implement the improvement
  • Testing and Implementing changes within multiple Cloud Environments
  • Producing software documentation to accurately represent the system that has been implemented and its current state for other engineers to use and rely on
  • Updating and maintaining existing tools and infrastructure
  • Facilitating the ingestion and enriching new logging services into the SIEM (Security Incident and Event Management) Tool for the analysts
  • Maintaining the pipelines and infrastructure that is facilitating the ingestion of logs and processing logs
  • Being able to assist with active investigations that and provide expert knowledge to assist analysts
  • Creating Playbooks for creating new capabilities and documentation for maintaining new capabilities

Person specification

Skills and experience

It is essential that you have:

  • In depth experience in configuring AWS and Azure policies and infrastructure, underlying logging systems and mechanisms
  • Demonstratable experience configuring Security related tools and implementing security policies
  • Demonstratable experience working with a SIEM tool (Microsoft Sentinel, Splunk, etc)
  • Understanding of threats to an organisation and how they can be mitigated using tools
  • Good communication and stakeholder management skills, acting as a bridge between the technical and the non-technical

It is desirable that you have:

  • Knowledge of AWS with configuring Security elements of AWS (Guard Duty, CloudTrail, CloudWatch)
  • Knowledge of using Python and/or the Django framework
  • Good working knowledge of Query Languages (SQL, KQL (Kusto), etc.)


Alongside your salary of £43,177, Department for Business and Trade contributes £11,658 towards you being a member of the Civil Service Defined Benefit Pension scheme. Find out what benefits a Civil Service Pension provides.
  • Learning and development tailored to your role
  • An environment with flexible working options
  • A culture encouraging inclusion and diversity
  • A Civil Service pension with an average employer contribution of 27%

Things you need to know

Selection process details

How to apply

As part of the application process you will be asked to upload a CV which outlines your experience, skills and fit for the role. Inspire People will assess your application against the essential criteria listed above to compile a longlist of applications, which will then be sifted by DBT. Successful candidates at this stage may be invited straight to interview or asked to complete a short, pre-recorded video screening interview (or alternately provide written answers to questions). These applications will then be sifted by DBT hiring managers. If you are successful, you will be invited to interview.

DBT sift will be from week commencing 5th August

Interviews will be from week commencing 12th August

Please note these dates are indicative and may be subject to change.

How we interview

At the interview stage for this role, you will be asked to demonstrate relevant Technical Skills and Behaviours from the Success Profiles framework. These are role specific and in line with the DDaT Capability Framework. There will be a scenario-based exercise as part of the interview.

Technical Skills

  • Cyber Security Operations
  • Threat Understanding
  • Secure Operations Management
  • Intrusion Detection and Analysis


  • Seeing the Big Picture
  • Working Together
  • Delivering at Pace

How we offer

Offers will be made in merit order based on location preferences. If you pass the bar at interview but are not the highest scoring you will be held on a 12-month reserve list in case a role becomes available. If you are judged a near miss at interview, you may be offered a post at the grade below the one you applied for.

This role requires SC clearance. DBT’s requirement for SC clearance is to have been present in the UK for at least 3 of the last 5 years. Failure to meet this requirement will result in your application being rejected and your offer will be withdrawn.

Checks will also be made against:

  • departmental or company records (personnel files, staff reports, sick leave reports and security records)
  • UK criminal records covering both spent and unspent criminal records
  • your credit and financial history with a credit reference agency
  • security services record
  • location details

More about us

This role can only be worked from within the UK, not overseas. If you are based in London, you will receive London weighting. DBT employees work in a hybrid pattern, spending 2-3 days a week (pro rata) in the office on average. Travel to your primary office location will not be paid for by DBT, but costs for travel to an office which is not your main location will be covered.

You can find out more about our office locations, how we calculate salaries, our diversity statement and reasonable adjustments, the Recruitment Principles, the Civil Service code and our complaints procedure on our website.

Find out more about life at DBT, our benefits and meet the team by watching our video or reading our blog!

Feedback will only be provided if you attend an interview or assessment.


Successful candidates must undergo a criminal record check.
Successful candidates must meet the security requirements before they can be appointed. The level of security needed is security check (opens in a new window).
See our vetting charter (opens in a new window).
People working with government assets must complete baseline personnel security standard (opens in new window) checks.

Nationality requirements

This job is broadly open to the following groups:

  • UK nationals
  • nationals of the Republic of Ireland
  • nationals of Commonwealth countries who have the right to work in the UK
  • nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities with settled or pre-settled status under the European Union Settlement Scheme (EUSS) (opens in a new window)
  • nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities who have made a valid application for settled or pre-settled status under the European Union Settlement Scheme (EUSS)
  • individuals with limited leave to remain or indefinite leave to remain who were eligible to apply for EUSS on or before 31 December 2020
  • Turkish nationals, and certain family members of Turkish nationals, who have accrued the right to work in the Civil Service
Further information on nationality requirements (opens in a new window)

Working for the Civil Service

The Civil Service Code (opens in a new window) sets out the standards of behaviour expected of civil servants.
We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window).
The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria.
The Civil Service also offers a Redeployment Interview Scheme to civil servants who are at risk of redundancy, and who meet the minimum requirements for the advertised vacancy.

Diversity and Inclusion

The Civil Service is committed to attract, retain and invest in talent wherever it is found. To learn more please see the Civil Service People Plan (opens in a new window) and the Civil Service Diversity and Inclusion Strategy (opens in a new window).

Apply and further information

This vacancy is part of the Great Place to Work for Veterans (opens in a new window) initiative.
The Civil Service welcomes applications from people who have recently left prison or have an unspent conviction. Read more about prison leaver recruitment (opens in new window).
Once this job has closed, the job advert will no longer be available. You may want to save a copy for your records.

Contact point for applicants

Job contact :

Name :
DDaT Recruitment
Email :

Recruitment team

Email :

Further information

Our recruitment process is underpinned by the principle of appointment on the basis of fair and open competition and appointment on merit, as outlined in the Civil Service Commissioners’ Recruitment Principles. If you feel your application has not been treated in accordance with these principles and you wish to make a complaint, you should in the first instance contact DBT by email at If you are not satisfied with the response you receive, you can contact the Civil Service Commission, which regulates all Civil Service recruitment. For further information on bringing a complaint to the Civil Service Commission please visit their web pages: Civil Service Commission Complaints