Crown Agents Bank

Financial Services

SeniorOperationalSecurityEngineer

London, United Kingdom FULL TIME Remote Friendly

The Brief

“Senior Operational Security Engineer at Crown Agents Bank. Skills: Operational Security, Endpoint Security, Network Security, Identity and Access Management, Data Security, Detection and Response. Own and operate the firm’s core protective and detective security controls across endpoint, network, identity and data security domains. Convert multiple best-efforts operational security activities into sustainable, auditable and scalable services”

What You'll Achieve.

Ensure timely and accurate access changes; Ensure least-privilege is maintained across the estate; Ensure timely detection and response; Proactively identify attacker activity; Improve detection and response efficiency

Industry & Context.

Financial Services

Problems you'll solve

Threat hunting; Investigate security incidents, anomalous activity and SOC escalations

What They're Looking For.

Must Have

Degree or equivalent professional experience in a relevant technical discipline, Significant hands-on experience in an operational information security or security engineering role, Demonstrable experience managing EDR/AV, SIEM/XDR platforms, and network security controls including firewalls, WAF and segmentation, Practical experience with identity and access management including MFA, PAM/PIM and access review processes, Experience with the enterprise security solutions suites (Endpoint, Cloud, XDR, Identity, etc) and Purview/DLP, Working knowledge of PAM tooling, Ability to produce clear technical documentation, reports and evidence suitable for audit and regulatory review

Nice to Have

Relevant industry certification desirable, such as SC-200, AZ-500, CompTIA Security+, GIAC (GCIA, GCED, GCIH) or CISSP, Experience in a regulated financial services environment preferred, Working knowledge of ISO 27001, NIST CSF, DORA or NYDFS Part 500 beneficial

What You'll Do.

Own and operate the firm’s core protective and detective security controls across endpoint

identity and data security domains

Convert multiple best-efforts operational security activities into sustainable

auditable and scalable services

Own and operate Endpoint Detection & Response (EDR) tooling including alert triage

threat containment and endpoint health monitoring

Enforce endpoint security baselines

compliance checks and hardening standards

Manage anti-malware controls

Configure and manage firewall and Web Application Firewall (WAF) controls

and remote access security

Maintain baseline security standards across endpoint environments

Own email security controls

proxy controls and malicious URL/content blocking

Administer and manage multi-factor authentication (MFA) and single sign-on (SSO) solutions

Manage Privileged Access Management (PAM/PIM) controls

mover and leaver (JML) processes

Run periodic access review and recertification cycles

Support customer-facing access controls and authentication governance

Manage Data Loss Prevention (DLP) controls

Oversee data classification

archiving and disposal controls

Support insider threat monitoring controls and escalation procedures

Manage encryption standards and certificate lifecycle

Triage and analyse security alerts

Coordinate with the SOC for detection and response

Lead threat hunting activities

Own and maintain the XDR platform

Investigate security incidents

anomalous activity and SOC escalations

Develop and maintain incident response runbooks

Own ransomware readiness and business resilience testing activities

Manage security automation and SOAR playbook development

Provide operational interface with the SOC

accurate and timely reporting covering endpoint health

network control status

IAM control health and incident metrics

Contribute security operations data and metrics to the master CISO reporting pack

How You'll Work.

Team & Collaboration

Working closely with the SD and Workspace team to maintain baseline security standards; Coordinating with the SOC to ensure timely detection and response; Provide operational interface with the SOC, supporting SLA management and technical escalation

Communication Scope

Produce clear technical documentation, reports and evidence suitable for audit and regulatory review

Free ATS check

Applying for this Senior Operational Security Engineer role?

Most applicants get filtered before a human reads their resume. See if yours makes the cut.

Should you apply? AI reads your resume vs this job — match score, gaps to address, ATS keywords.

Skill Signal 75 detected

Core

Endpoint Security ×5

Network Security ×5

Required

Operational Security ×3

Identity and data security ×3

Alert triage ×3

Threat containment ×3

Policy configuration ×3

Compliance checks ×3

Hardening standards ×3

Update management ×3

Network segmentation ×3

Remote access security ×3

Nice to have

Endpoint Detection & Response (EDR)

Firewall

Web Application Firewall (WAF)

Email security

anti-spam

anti-phishing

DMARC

DKIM

SPF

Web filtering

Behavioural

Clear communication

Role Details

Work Mode

Type

FULL TIME

How to Apply on SmartRecruiters

SmartRecruiters often includes a video screening step — check camera and mic permissions.
Link your GitHub or portfolio directly in the profile section for technical roles.
Applications may be reviewed by AI scoring before reaching a recruiter — use keywords from the job description.

ANONYMOUS · UNFILTERED

What do employees actually say about Crown Agents Bank?

Real rants from real employees. Read before you apply.

Read Company Rants →