Job Description
Are you a proactive and hands-on Security Engineer looking for something beyond the "run-of-the-mill" SOC role?
We're partnering with a market leading organisation to find a dynamic Security Engineer to join their close knit security function. This is a mostly remote position (95%+), but we're looking for someone who thrives in autonomy and enjoys solving problems before they become incidents.
What's different about this role?
This isn't a role where you'll sit back and triage tickets. You'll be working in close knit team, actively involved in developing security strategies, responding to threats and strengthening infrastructure. You'll also occasionally lend a hand across IT when needed - so a generalist IT background is helpful too.
The environment is Microsoft-focused (Azure, M365, Defender), with Exabeam as the primary SIEM, and you'll play a key part in their journey toward Cyber Essentials Plus certification.
The Role
* Investigate, respond to, and resolve security incidents
* Shape and improve SIEM monitoring and response using Exabeam
* Guide on Azure security controls: Entra ID, Defender, NSGs, Key Vault, etc.
* Harden infrastructure across Microsoft 365 and Endpoint environments
* Collaborate with System Admins, SOC Analysts, and Network Engineers
* Support compliance with upcoming Cyber Essentials certification
* Automate tasks with Scripting (PowerShell, KQL, Python a plus)
* Help non-technical users understand and adopt secure practices
What We're Looking For
* 5+ years in IT Security Engineering or a related technical field
* Proven hands-on experience with:
o Microsoft 365 & Azure Security (Defender, Entra ID, Conditional Access)
o Networking fundamentals (Cisco Meraki, VPNs, segmentation)
o SIEM (ideally Exabeam)
o Endpoint security and EDR/XDR
* Background in general IT or infrastructure support
* Excellent communication skills, patient and clear with non-IT users
* Proactive and self-starting mindset, someone who "gets on with it"
Desirable
* Certifications: AZ-500, CISSP, CCSP, CISM
* Experience with compliance initiatives like Cyber Essentials
* Any coding/Scripting ability (PowerShell/KQL/Python)
Working Pattern
* Fully remote with occasional head office visits
* Flexible approach to working patterns in a family friendly culture
Benefits
* Strong training and development support
* Friendly, collaborative IT team of 50 across Infrastructure, Dev & Ops
* The chance to help shape how a major UK organisation tackles cyber security
At Gleeson Recruitment Group, we embrace inclusivity and welcome applicants of all backgrounds, experiences, and abilities. We are proud to be a disability confident employer.
By applying you will be registered as a candidate with Gleeson Recruitment Limited. Our Privacy Policy is available on our website and explains how we will use your data.