Are you a proactive and hands-on Security Engineer looking for something beyond the "run-of-the-mill" SOC role?
We're partnering with a market leading organisation to find a dynamic Security Engineer to join their close knit security function. This is a mostly remote position (95%+), but we're looking for someone who thrives in autonomy and enjoys solving problems before they become incidents.
What's different about this role?
This isn't a role where you'll sit back and triage tickets. You'll be working in close knit team, actively involved in developing security strategies, responding to threats and strengthening infrastructure. You'll also occasionally lend a hand across IT when needed - so a generalist IT background is helpful too.
The environment is Microsoft-focused (Azure, M365, Defender), with Exabeam as the primary SIEM, and you'll play a key part in their journey toward Cyber Essentials Plus certification.
The Role
Investigate, respond to, and resolve security incidents
Shape and improve SIEM monitoring and response using Exabeam
Guide on Azure security controls: Entra ID, Defender, NSGs, Key Vault, etc.
Harden infrastructure across Microsoft 365 and Endpoint environments
Collaborate with System Admins, SOC Analysts, and Network Engineers
Support compliance with upcoming Cyber Essentials certification
Automate tasks with scripting (PowerShell, KQL, Python a plus)
Help non-technical users understand and adopt secure practicesWhat We're Looking For
5+ years in IT Security Engineering or a related technical field
Proven hands-on experience with:
Microsoft 365 & Azure Security (Defender, Entra ID, Conditional Access)
Networking fundamentals (Cisco Meraki, VPNs, segmentation)
SIEM (ideally Exabeam)
Endpoint security and EDR/XDR
Background in general IT or infrastructure support
Excellent communication skills, patient and clear with non-IT users
Proactive and self-starting mindset, someone who "gets on with it"Desirable
Certifications: AZ-500, CISSP, CCSP, CISM
Experience with compliance initiatives like Cyber Essentials
Any coding/scripting ability (PowerShell/KQL/Python)Working Pattern
Fully remote with occasional head office visits
Flexible approach to working patterns in a family friendly cultureBenefits
Strong training and development support
Friendly, collaborative IT team of 50 across Infrastructure, Dev & Ops
The chance to help shape how a major UK organisation tackles cyber securityAt Gleeson Recruitment Group, we embrace inclusivity and welcome applicants of all backgrounds, experiences, and abilities. We are proud to be a disability confident employer.
By applying you will be registered as a candidate with Gleeson Recruitment Limited. Our Privacy Policy is available on our website and explains how we will use your data