Information Security Engineer
Type: Permanent
WFH: On-site 5 days per week
We’ve partnered with a global engineering manufacturer seeking an Information Security Engineer to blend light alert response with delivering security projects and rollouts across a 10k-user enterprise. In a small, lean team (no tiered SOC), you’ll work directly with engineers and business stakeholders to harden controls, ship pragmatic improvements, and support upcoming programmes like DLP and third-party risk.
Take ownership of day-to-day security operations, responding to alerts, assessing risk, and following issues through to closure with clear communication.
Deliver practical security improvements: from M365 hardening and server patching to firewall or network refresh projects.
Lead and support structured rollouts across Azure, Entra ID, and Windows Server environments.
Collaborate with Infrastructure and third-party suppliers on tooling such as EDR, web filtering, and email security.
Keep documentation current, playbooks, policies, and project summaries that help the wider team.
Support awareness initiatives and help the business pragmatically adopt security best practices.
Around 2-4 years’ experience in IT, with at least 12-18 months in a security or infrastructure role.
A broad technical base across Azure / M365 / Entra, Active Directory, Windows Server, and networking fundamentals.
Practical experience with EDR and web/email security tools (CrowdStrike, Defender for Endpoint, Zscaler, Mimecast, or similar).
project rollouts, migrations, or improvements you’ve owned end-to-end.
33 days’ holiday (includes Easter weekend & May half-term), on-site collaboration culture, no on-call, early Friday finish, board-backed investment in security with real scope to upskill, on-site canteen and lakeside grounds with Saturday access to the golf course.