Cybersecurity Engineer

Tech Kings Cross, London Req. UMG-5902


Job title:
Cybersecurity Engineer
Responsible to: SVP Security Operations
Department: Global Security Office
Location of work: Remote (Located in the UK)


Music is Universal

It’s the passionate and dedicated team at Universal Music who help make us the world’s leading music company. From A&R to finance, legal to digital, sales to marketing, Universal Music is the place to grow and develop your career within a truly commercial and innovative business that leads in everything it does.

Everyone is welcome to apply for our roles, and we are determined to ensure that no applicant or employee receives less favourable treatment because of gender, race, disability, sexual orientation, religion, belief, age, marital status, background, pregnancy or caring responsibilities. We also recognise the importance of diversity of thought within our teams and are fully committed to embracing the talents of people with autism, dyslexia, ADHD and other forms of neurocognitive variation.

We will always seek to make appropriate adjustments to recruitment, workplaces, and work processes to be fully inclusive to people with different needs and working styles. If you need us to make any reasonable adjustments for you from application onwards, including alternatives to the online form or to disclose a neurocognitive condition, please email [email protected]


The A Side: A Day in The Life


The Cybersecurity Engineer role is part of Security Operations team that will, manage, maintain, design, configure, and document security tools, systems, and processes.


The B Side: Skills & Experience

Be Technical


  • Administer security tools and technologies
  • Maintain security systems (Linux, Windows, etc.) E.g., install security patches, OS updates, etc
  • Collect and review systems and application security logs from all systems (Firewalls, OS, Email, IDS, , etc.), take action to mitigate any threats based on findings
  • Conduct log analysis across a diverse ecosystem of technology (operating systems, internally developed web apps, software-as-a-service apps, cloud infrastructure)
  • Perform forensics activities and root cause analyses
  • Participate in the design/architecture, development, and implementation of any new application or service
  • Conduct Vulnerability Assessments as required
  • Assess and triage potential security incidents. Coordinating and leading response to high impact security incidents
  • Lead efforts to detect and analyze malicious software and work with vendors and teams
  • Automate triage, analysis, response, and remediation tasks and processes with code, APIs, and SOAR tools. Contribute to the creation and tuning of detection rules.


Be Organised 


  • Ensure compliance with internal policies, standards, and regulatory requirements
  • Participate in the security operations on-call rotation
  • Perform other duties as assigned
  • Lead projects, planning, controlling, executing, and closing assigned projects to produce required deliverables


Person Specification




  • Strong desire to perform as an incident responder and handle investigating, triaging, analysing and reporting
  • Experience monitoring and responding to security incidents involving traditional (Windows, Mac, Linux or similar) and cloud-based infrastructure (AWS, GCP, and/or Azure or similar) 
  • Excellent analytical and problem-solving skills
  • Solid understanding and interest in recognized information security related standards, analysis frameworks (MITRE ATT&CK, Kill Chain, NIST Incident Response or similar) and technologies. The ability to learn new technology and concepts quickly
  • Knowledge about exploits, vulnerabilities, network attacks
  • Excellent written and oral communication skills
  • Self-motivated, detail-oriented with analytical and interpersonal skills
  • Good working knowledge of security operations, safety practices in a business environment and enforcement of procedures
  • Ability to work under pressure and handle multiple projects with tight deadlines across a global enterprise
  • Experience with information security SIEMs, vulnerability scanners and application scanners
  • Proficient with Linux administration
  • Ability to construct basic Boolean logic and regex search strings
  • Familiarity with enterprise security controls and security best practices for Windows, Linux, and Mac systems or similar
  • Systems engineering experience and cybersecurity work, preferably in an entertainment industry
  • Strong interpersonal skills, communication and presentation skills
  • Proficient in Microsoft Office or similar products
  • Experience with containers such as docker or Kubernetes
  • Experience working with Python and Linux shell scripts or similar 




  • Programming and scripting using Python, Linux shell scripts, regex, a plus


Bonus Tracks: Your Benefits


  • Group Personal Pension Scheme (between 3% and 9%)
  • Private Medical Insurance
  • 25 paid days of annual leave
  • Interest Free Season Ticket Loan
  • Holiday Purchase scheme
  • Dental and Travel Insurance options
  • Cycle to Work Scheme
  • Salary Sacrifice Cars
  • Subsidised Gym Membership
  • Employee Discounts (Reward Gateway)


Just So You Know…

The company presents this job description as a guide to the major areas and duties for which the jobholder is accountable.  However, the business operates in an environment that demands change and the jobholder's specific responsibilities and activities will vary and develop.  Therefore, the job description should be seen as indicative and not as a permanent, definitive and exhaustive statement.