IT Security Engineer

We have a fantastic opportunity for an IT Security Engineer here at the Jensten Group. You will be responsible for implementing, maintaining, and continuously improving the organisation’s security controls, technologies, and processes. Working closely with the IT Director, you will ensure Jensten’s systems, infrastructure, and data remain protected against evolving security threats. You will act as a technical specialist for security tooling, vulnerability remediation, incident response, assessments and secure configuration practices across the environment

This is a hybrid role based from our Oldham office, where you’ll initially spend more time on site whilst training, building relationships, and learning the role (we can also consider remote working for the right person). Some key responsibilities will include:

• Strategy, policy & AI governance: Develop and deliver the information security strategy, policies, standards and procedures; define AI guardrails and implement risk controls.

• Risk management framework: Develop, maintain and monitor the information security risk management framework.

• Compliance & enforcement: Lead ISO 27001, Cyber Essentials/Plus and PCI DSS programmes; monitor and enforce organisational compliance with security policies.

• Controls & secure architecture: Ensure security processes, controls and technologies are effective and regularly reviewed; provide technical guidance on secure design and operations.

• Threat & vulnerability management + tooling: Assess, prioritise and remediate vulnerabilities and emerging threats; configure and optimise SIEM, EDR, WAF, vulnerability management, code scanning and cloud security tooling.

• Third-party‑ security: Liaise with vendors on security response and compliance; run due diligence and ongoing reviews for third-party‑ risk.

• Incident detection & response: Monitor for security incidents; lead timely investigation, containment, recovery and post incident‑ improvements.

• Assurance & testing: Plan and perform security audits; coordinate penetration testing and track remediation to closure.

As our IT Security Engineer, you might have experience in implementing and configuring technical security controls and delivered Information Security initiatives end-to-end, from policy and risk assessments through adoption and compliance. Ideally, you have enterprise incident response experience & can input into strategy. You might also be or have:

You’ll also bring:

• Hands-on experience‑ leading ISO 27001, Cyber Essentials/Plus, and PCI DSS programmes.

• Practical expertise with security tooling.

• Experience in incident management, threat modelling, secure architecture, and stakeholder engagement.

• Ability to write clear policies, risk assessments, and reports; comfortable presenting to technical and non‑technical audiences.

• A collaborative, pragmatic approach—able to influence, coach, and drive outcomes.

• Be a good communicator with internal and external stakeholders.

• Take ownership of making change happen and driving improvements.

• Apply solid problem-solving skills to overcome challenges effectively.

When you join us, you can expect a supportive culture and an attractive range of rewards and benefits which include:

• Competitive salary with an annual pay review and bonus scheme.

• 27 days annual leave (includes a day off for your birthday and another for a religious holiday of your choice) + bank holidays.

• Auto enrolment into our excellent pension scheme.

• Flex-benefits – A range of flexible benefits to choose from, that are most important to you.

• Group Life Assurance cover.

• 3 months Maternity, Paternity & Adoption leave all fully paid.

• Professional qualification study support relevant to your role and career.

• Perks at Work – amazing discounts on cinema tickets, meals out, luxury items etc.

• Holiday purchase scheme – up to 5 days annually.

At Jensten Group, we’re proud to be one of the UK’s leading insurance broking businesses — and we’re growing fast. Operating through six specialist divisions—Network Broking, Regional Broking, Schemes Broking, Specialist Lines, London Market Broking, and Underwriting—we deliver tailored insurance solutions directly to clients and through a network of trusted third-party broking partners.

Our Connected Broker strategy brings together the capabilities of our retail broking, London Market expertise, underwriting strength, and broker network to deliver best-in-class outcomes for our clients. We handle around £650 million in Gross Written Premium each year and work closely with many of the UK’s top insurers, building strong, long-standing partnerships

In 2025, we entered an exciting new chapter with Bain Capital becoming our strategic investment partner — accelerating our ambition to build the to be the UK's leading independent insurance broker - experts protecting what matters.

Whether you're just starting out or looking to take the next step in your career, Jensten offers opportunities to grow, thrive, and make a real impact.