Job Description
SecOps Engineer
Croydon (Hybrid)
6 Month Contract
£500/day (Outside IR35)
SecOps Engineer needed with both active SC Clearance and NPPV3 Security Clearance. 6 Month Contract based in Croydon (Hybrid).
Paying up to £500/day (Outside IR35). Start ASAP in Feb/March 2026.
Hybrid Working - 3 days/week remote (WFH), and 2 days/week working on-site in the Croydon office, plus occasional travel to the Birmingham office.
A chance to work with a leading global IT transformation business specialising in delivering large-scale Government / Public Sector projects.
Key experience + tasks will include:
* SecOps Engineer needed to perform a key role in supporting technically complex + secure Government Cloud services programmes.
* SecOps Engineer with in-depth experience of Security Operations, Security Consultant, or Information Security related roles.
* Experience of supporting secure government Cloud migration / transformation programmes.
* Ensuring security procedures, controls + operational practices are compliant with Government Security Classifications framework and security policies.
* Maintaining Security Operating Procedures (SysOps), and Information Security management policies.
* Continuous improvement of security processes, supporting secure delivery across Cloud services + maintaining a strong security culture.
* Investigating security incidents and breaches, performing vulnerability scans for releases, vulnerability risk assessments + remediation planning.
* Conducting threat modelling to identify risks and inform secure design decisions.
* Providing assurance over patching operations, release notes + change management activities.
* Assessing external threat intelligence feeds + providing recommendations to mitigate risks.
* Conducting security incident investigations, accurate reporting + taking follow-up actions.
* Creating ITHC (IT Health Check) Remediation Action Plans, tracking progress, ITHC change management + delivery Kanban board tickets.
* Supporting certificate management ceremonies + cryptographic control processes.
* Managing digital access requests + supporting Joiner/Mover/Leaver processes to maintain secure access controls.
* Security Certifications (CISSP, CISM, CCSP, ISO 27001 Lead Auditor/Implementer), or similar.
* Experience of Critical National Infrastructure (CNI) and Government / GOV.UK programmes preferred.
JBRP1_UKTJ