Senior Cyber Engineer

At Royal Mail, Cyber Security is at the heart of everything we do to protect trust and ensuring smooth running operations. As a Senior Security Engineer, you will be pivotal in ensuring our security technologies are deployed effectively, maintained to the highest standards, and continuously optimised to support our evolving business needs.

As a key member of the Security team, you will be the technical expert for CrowdStrike Falcon, Zscaler, and Microsoft Sentinel, ensuring these platforms provide robust protection across our digital estate. You will lead the onboarding of applications and services into SIEM, enhancing visibility and strengthening our security monitoring capabilities.

This role also plays a crucial part in managing vendor relationships, ensuring our security solutions remain fit for purpose, well-supported, and fully aligned with operational requirements. You will work closely with security architects, infrastructure teams, and external partners to continuously improve our security tooling and ensure it delivers maximum value.

This a hands-on engineering role, ideal for someone with deep technical expertise who takes pride in configuring, optimising, and managing enterprise security technologies. Your work will directly contribute to protecting one of the UK’s most recognised and trusted brands.

Security Tooling Management & Configuration:

• Act as SME for CrowdStrike Falcon, Zscaler, and Microsoft Sentinel.
• Own the configuration, tuning, and integration of security tools to maximizes their effectiveness.
• Ensure Security platforms are operating optimally and aligned with business needs.

Log Onboarding & Security Data Integration:

• Lead the onboarding of application and service logs into Microsoft Sentinel, ensuring complete security visibility.
• Work with internal teams to integrate log sources from cloud services, network security tools, and infrastructure.
• Ensure correct log parsing, enrichment, and forwarding to support security monitoring.
• Manage vendor relationships for CrowdStrike, Zscaler, Microsoft (and others); ensuring SLAs are met and security tools are effectively supported.
• Work with security architects and operations teams to identify and implement improvements in security tooling.
• Represent Security Engineering function in discussions with stakeholders and third-party vendors.

Security Transformation Projects:

• Play a key role in major security transformation projects, ensuring security tooling is integrated effectively.
• Work alongside SOC, security architects, and infrastructure teams to support evolving security requirements.
• Ensure security solutions are maintainable, scalable, and fit for purpose.

• Technical Expertise in Endpoint Detections & Response; including sensor deployment, policy tuning, and detection optimisation. CrowdStrike Falcon experience is an advantage.
• Strong SIEM experience; including log ingestion, parsing, and security event correlation. Microsoft Sentinel experience is an advantage.
• Experience managing log onboarding processes from applications, cloud services, and security tools into a SIEM.
• Experience configuring, optimising, and managing enterprise security technologies to support detection, response, and monitoring needs.
• Familiarity with MITRE ATT&CK, Enterprise security telemetry, and security engineering best practices.

We aim to move as quickly as possible. If successful you will be contacted asap by our recruitment team to discuss the position and two stage interview process.

Royal Mail are proud of our diverse employee network groups and the active role they play to support belonging and encourage a positive work environment. We are firmly committed to inclusion and passionate about our people representing the communities we serve.

We are happy to support your need for any adjustments during the application and hiring process. Please share the details within your application if required.