Cyber Security Network Engineer - 2 year Fixed-Term Contract
My client, an International Bank, is looking for a Cyber Security Network Engineer to join them on a Fixed - Term - Contract for 2 years. This role does not offer sponsorship and you will need to be in the office 5 days per week (in London). However, there is a chance you can work one day per week from home (either Monday or Friday).
About the Cyber Security Network Engineer Role:
My client are seeking a motivated, hands-on and experienced Cyber Security Network Engineer with experience in the banking industry ideally with Oracle Flexcube and Oracle Banking Digital Experience (OBDX). This role is to own the bank’s technical security posture, protect systems from cyber threats, and manage perimeter and application security platforms. This role bridges the gap between infrastructure engineering and threat management, ensuring high availability, robust defence-in-depth, and strict regulatory compliance across all banking networks.
Main responsibilities:
1.Vulnerability Management:
• Scanning & Triage: Run regular vulnerability scans across networks applications, and endpoints; triage findings based on business risk and CVSS scores, and coordinate rapid remediation with IT operations teams.
• KPI Reporting: Track, analyze, and report on vulnerability lifecycle metrics and KPIs for senior leadership and regulatory oversight bodies.
• Patch Verification: Validate the effectiveness of deployed patches and configuration changes via targeted follow-up scans.
2. Security Infrastructure Ownership:
• Next-Generation Firewalls (NGFW): Manage and maintain Cisco Firepower firewalls, including complex rule set architecture, IPS/IDS signature tuning, URL filtering, and malware protection policies.
• Web Application Firewalls (WAF): Administer F5 WAF (Advanced WAF / ASM) to protect online banking portals, API endpoints, and mobile banking backends against OWASP Top 10, credential stuffing, and advanced bot attacks.
• Application Delivery Controllers (ADC): Manage Citrix ADC / NetScaler load balancers, ensuring secure traffic distribution, robust TLS/SSL cipher suite configuration, and secure session management.
• Zero Trust & Access Control: Maintain secure Remote Access VPNs, site-to-site IPsec tunnels, and network access control (NAC) policies to enforce micro-segmentation.
3. Threat Detection & Response:
• SIEM Monitoring: Monitor, analyze, and triage alerts from the Security Information and Event Management (SIEM) platform, acting as a technical escalation point for the SOC.
• Use Case Development: Develop, test, and tune custom detection use cases, correlation rules, and alert logic to improve detection quality and reduce false positives.
• Incident Response: Support incident response phases (containment, eradication, recovery) during active network-level cyber security incidents.
4. Security Hardening & Architecture:
• Baseline Configurations: Establish, update, and enforce secure configuration baselines (e.g., CIS Benchmarks) for Windows servers, Linux/Unix environments, and core network devices.
• Network Segmentation: Design and audit zone-based network segmentation to isolate critical banking environments (e.g., SWIFT, card processing, core banking) from untrusted networks.
5. Change Management Governance & Discipline:
• Structured Planning: Author comprehensive change requests detailing exact technical steps, complete documentation, precise impact assessments, and zero-downtime execution windows.
• Rigorous Testing: Mandate and execute thorough pre-implementation testing in non production environments to validate security policies, rules, and configurations before live deployment.
• Fail-Safe Rollbacks: Design, document, and test explicit, step-by-step rollback procedures for every infrastructure change to guarantee immediate service restoration in the event of failure.
• Peer Review: Lead and participate in peer-review cycles for complex network and security modifications to maintain institutional standards and eliminate single points of failure.
6. Project Security & Compliance:
• Risk Reviews: Perform technical security reviews and threat modelling for new infrastructure projects, cloud migrations, and standard change requests.
• Penetration Testing: Coordinate annual penetration testing cycles with external vendors, validate findings, and track the remediation of identified flaws.
• Regulatory Alignment: Ensure all network security controls comply with industry standards and best practice
Experience & Skills Required:
• Required Experience • 5+ years of experience in network engineering with a heavy focus on cyber security, ideally within a regulated financial institution or enterprise environment.
• Proven hands-on experience configuring and troubleshooting Cisco Firepower, F5 ASM/WAF, and Citrix NetScaler.
• Strong understanding of core networking protocols (BGP, OSPF, EIGRP), the TCP/IP stack, and advanced cryptographic protocols (TLS 1.3, SSH, IPsec). • Desired Certifications (One or more)
• General Security: CISSP, CISM, or CEH.
• Network / Vendor Specific: CCNP Security, Cisco Certified Specialist - Network Security Firepower, F5-CA/F5-CTS, or Citrix Certified Professional - Networking (CCP-N).
• Soft Skills
• Strong collaborative skills to work effectively alongside standard IT Infrastructure and DevOps teams.
• Excellent technical writing skills for creating clear, compliant security documentation and architecture diagrams
If the above is of interest please apply to this ad, call me on 0207 509 8040 to find out more or email me across your CV to darius.goodarzi@robertwalters.com
Robert Walters Operations Limited is an employment business and employment agency and welcomes applications from all candidates
About the job
Contract Type: Permanent
Specialism: Technology & Digital
Focus: Information Security
Industry: Banking
Salary: £70,000 - £75,000 per annum
Workplace Type: On-site
Experience Level: Senior Management
Location: London
FULL_TIMEJob Reference: VR7YM3-76410176
Date posted: 7 July 2026
Consultant: Darius Goodarzi
london information-technology/information-security 2026-07-07 2026-09-05 banking London London GB GBP 70000 75000 75000 YEAR Robert Walters https://www.robertwalters.co.uk https://www.robertwalters.co.uk/content/dam/robert-walters/global/images/logos/web-logos/square-logo.png true