IT Security Engineer

IT Security Engineer

Locations: Manchester, Birmingham, Glasgow

Here at Pinsent Masons we bring together the best people to get the job done. We’re naturally curious, constantly learning, listening, and growing. We’ll truly value your ideas. You’ll be joining an award-winning, hardworking and commercially minded team, where you’ll have the opportunity to work with leading experts and form meaningful relationships, while making a difference. You’ll get the opportunity to be involved in varied and challenging work. Working in an open and supportive environment, to deliver outstanding results.

Our people are our success, and we work as one team.

We are recruiting an IT Security Engineer to strengthen the firm’s cyber security posture by delivering and maintaining robust technical controls across infrastructure, cloud, and application environments.

The Security Engineer plays a key role in identifying and mitigating vulnerabilities, optimising security tooling, and supporting incident response readiness and collaborates closely with architecture, development, and governance teams to embed security into solution design, ensure compliance with internal and external standards, and drive continuous improvement.

This role can be based from our Manchester, Birmingham or Glasgow office and our standard working hours are 9.30am-5.30pm; however, as an inclusive employer, we are willing to consider any flexible working requests.

Candidate Overview

We are looking for candidates who ideally hold the following skills and experience:

• IAM: Proficient in Active Directory, Microsoft Entra ID, and LDAP. Experienced in implementing role-based access control (RBAC) and conditional access policies.
• SIEM & threat detection: Hands-on experience with Microsoft Sentinel and Defender XDR; skilled in log correlation, custom rule creation, false positive reduction, and integration of threat intelligence feeds; familiarity with the MITRE ATT&CK framework.
• Network security: Strong knowledge of Cisco ASA, Firepower, and Meraki; experience with network segmentation, zero trust architecture, and firewall rule base management aligned with least privilege principles; experience with IDS/IPS technologies.
• Cloud security: Working knowledge of Azure security controls; ability to review and secure Terraform templates; understanding of cloud workload protection platforms (CWPP).
• Vulnerability & pen testing: Experience with automated vulnerability scanning tools (e.g. Qualys, Tenable); capable of managing penetration testing initiatives and tracking remediation.
• Automation & Scripting: Experience in scripting (PowerShell and/or Python); experience with automation platforms like Azure Logic Apps.
• MSSP Integration: Proven experience integrating and managing security operations with Managed Security Service Providers (MSSPs) to enhance threat detection, response and overall security posture.
• DevSecOps: Familiarity with SAST/DAST tools (e.g. Bandit, RetireJS, Trivy) and integration of security testing into CI/CD pipelines.

What happens next?

Once your application has been submitted and reviewed, our Recruitment team will share the outcome with you by email.

We typically hold two interview stages per vacancy providing the opportunity to meet two members of the hiring team at each stage. The first stage is typically conducted virtually and the second stage typically in person at the office in which the role would be based. However, we strive to remain flexible depending on the requirements of the role or the candidate.

Our strength lies in our differences.

We are a Disability Confident and top Stonewall employer, a Valuable 500 member, a signatory of the Race at Work Charter and a proud partner of Neurodiversity in Law. We encourage and value different ideas and styles of thinking. It’s with different perspectives that we’ll find solutions to our clients’ most complex challenges. It’s how we’ll deliver outstanding results today, and tomorrow. We want everybody attending an interview to be comfortable and able to fully demonstrate their experience and talents.

#LI-BONF