Cyber Security Specialist

We are seeking a highly capable and driven Cyber Security Professional to join our security team—someone who brings a continuous learning mind-set, a positive outlook, a can-do attitude, and a strong focus on delivering results. This role is ideal for individuals who thrive on pushing boundaries and taking ownership of protecting Mail Metric's digital assets and data. As a specialist, you will work closely with infrastructure, platform, application, end-user, and client services teams to lead and optimise security operations, threat hunting, and incident response initiatives. You\'ll play a key role in translating security requirements into technical blueprints and leading their implementation, with hands-on engineering work to deploy and integrate security solutions. You\'ll also mentor security analysts, act as a point of escalation, helping build a high-performing security team equipped to defend against sophisticated threats—including those driven by AI—and leverage AI-based tools and incorporate AI agents to enhance operational efficiency.

• Security Tooling Ownership: Manage, document, optimise, and implement security technologies including anti-malware, vulnerability management, SIEM, MDR, WAF, and PAM, ensuring alignment with industry standards and group\'s security roadmap.
• Requirements Gathering & Implementation: Gather business, technical and security requirements, convert them into designs, and lead the implementation workstreams—including engineering tasks such as configuration, integration, and deployment of security solutions in alignment with ITIL change control process.
• Compliance & Risk Mitigation: Take ownership to maintain relevant certifications and proactively to ensure compliance with Cyber Essentials Plus, PCI-DSS, and ISO 27001.
• Incident Response Leadership: Provide advanced technical expertise in investigating security alerts and lead incident response efforts, including breach analysis, threat hunting and remediation.
• Security Awareness: Develop and deliver training programs to raise security awareness across the organisation and for new starters.
• Secure Architecture Collaboration: Work with cross-functional teams to embed security requirements into system designs from the outset.
• Technical Advisory: Offer security guidance during technology upgrades, product launches, penetration testing, and compliance audits.
• Security Reporting & Communication: Monitor, measure, and report on the Group\'s overall security posture across AWS, Azure, SaaS, and on-premises environments. Track key performance indicators (KPIs) and maintain scorecards to assess effectiveness. Clearly communicate emerging risks, trends, and actionable recommendations to senior technical and business stakeholders to support strategic decision-making.

Huddersfield or Leicester (Hybrid, working 2 days in the office)

Every successful relationship rests on the shoulders of great communication.

We have a rich heritage of partnering with financial and business services as well as the public sector to help improve communication between organisations and their customers. We build solutions that matches client requirements, in the ever-evolving world of customer communications. From print to web to mobile messaging, we\'ll build a two-way customer communication strategy that puts customers\' communication preferences at its core, all the while working within the strictest regulatory framework. By delivering the right message at the right time and through the right channel we help foster higher value customer relationships.

• A bachelor\'s degree in Computer Science, Information Security, or equivalent proven industry experience
• 2-4 years of experience in cybersecurity engineering, operations, or related technology roles
• Solid grasp of the CIA triad, along with relevant standards and industry best practices
• Hands-on experience with firewalls, IDS/IPS, antivirus, vulnerability scanners, and SIEM platforms
• Experience in engineering implementation of security solutions (e.g., configuring, deploying, and integrating tools, logging and monitoring)
• Proven experience in managing major IT or security incidents
• Excellent analytical and problem-solving abilities
• Familiarity with frameworks like ISO 27001 and SOC2 Control implementation
• Industry certifications (e.g., EC-Council, ISC2) are highly desirable

• Competitive salaries
• 26 days holiday per year plus Bank Holidays
• Enhanced maternity and paternity schemes
• Sick pay schemes
• Eye care scheme - free eye tests and discounts on glasses for DSE users
• Electric car scheme
• Cycle to work scheme
• Employee-Referral Scheme
• Free parking on site
• Free fruit