Technical Cyber Security Lead

You will be responsible for building and embedding secure technology solutions across Genus's global estate. Your focus will be on architecture, engineering, and advanced technical assurance to ensure systems, applications, and data are designed, implemented, and operated securely. You will report directly to the Global Head of Cyber Security and partner closely with IT, infrastructure and business delivery teams to provide subject‑matter expertise, drive secure‑by‑design practices and oversee the development of technical security controls.

The role requires weekly visits (some flexibility on a week‑by‑week basis) to the office. Ideally, you live within a reasonable distance of our office in Stapeley. Salary: up to £85,000 dependent on experience.

• Partner with IT, Enterprise Architecture and delivery teams to embed security by design into technology projects and change initiatives.
• Provide expert technical review and challenge on project designs, integrations and solutions from a cyber‑risk perspective.
• Translate governance and compliance requirements into practical, technical controls and solutions.
• Support Enterprise Architecture with the creation and communication of security principles, standards and reference patterns for Genus platforms, infrastructure and applications.

• Lead the management, deployment and optimisation of core security technologies (e.g., Entra ID, SentinelOne, Rapid7, Proofpoint).
• Oversee vulnerability management and remediation activities, ensuring effective alignment with IT and operations teams.
• Support IT operations to maximise use of existing toolsets, streamline processes and improve efficiency of controls.
• Develop and automate technical controls, playbooks and integrations to strengthen Genus' defensive posture.
• Act as the senior escalation point for complex technical issues and advanced incident investigations.
• Embed security within DevOps and CI/CD pipelines, integrating automated testing, scanning and configuration assurance into workflow.
• Define and implement secure configuration, runtime protection and vulnerability management for containerised environments such as Kubernetes.

• Support the Global Head of Cyber Security in evolving the enterprise cyber strategy with a focus on technical architecture and engineering.
• Work with the GRC Lead to ensure risks, audit findings and regulatory requirements are addressed through technical solutions.
• Identify emerging technologies and threats, recommending improvements to security architecture and tooling.
• Provide clear technical guidance to business and IT teams, balancing innovation and risk reduction.

• Mentor and guide the global security team, developing technical capability and proactive behaviours.
• Support recruitment, training and professional growth of the security team.
• Foster a culture of collaboration, innovation and continuous improvement in cyber engineering and architecture.

• Performance related bonus
• 25 days holidays + Bank Holidays
• Pension
• Private medical cover
• Health Cash back scheme
• Employee Assistance Programme
• Employee share plan
• Flexible working policy (where appropriate / practicable)
• Enhanced maternity leave: 12 weeks at full pay, then 4 weeks at 50 % pay, followed by SMP
• Comprehensive L&D programme including access to Genus University and Mango (languages)

• Strong background in cyber security architecture, engineering or technical consulting in a complex global enterprise.
• Knowledge of security frameworks (e.g. ISO 27001, NIST), control design and experience applying them in technical contexts.
• Experience integrating security into DevOps pipelines and containerised environments (e.g. Kubernetes, Docker).
• Proven ability to design and deliver secure solutions across cloud (Azure, AWS, M365), infrastructure and applications.
• Hands‑on expertise with security platforms and technologies (SIEM, EDR, vulnerability management, IAM, DLP, firewalls).
• Strong communication skills with the ability to explain technical risks and solutions in business language.
• Certifications such as CISSP, CCSP, Azure Security Engineer, or SABSA desirable.