Job Description
Security Engineer
£80-£90,000
2 days a week on site - Surrey
We are seeking an experienced Security Engineer with strong Threat Modelling and Detection Engineering capabilities to support a large-scale application environment. This role will focus on designing and implementing threat models across a diverse portfolio of 90–100 applications, enhancing detection capabilities, and strengthening the organisation’s security posture.
You will work closely with the Information Security team to analyse application logs, build detection logic, and implement automated alerting and response workflows using Microsoft Azure security technologies.
This is an excellent opportunity for a hands-on security professional who enjoys combining threat modelling, detection engineering, and Azure security tooling in a highly impactful role.
Key Responsibilities
* Design and implement threat models across a large and diverse application estate
* Analyse application logs using Azure Log Analytics and Microsoft Sentinel to identify anomalies and potential threats
* Develop and maintain KQL queries to extract and correlate security-relevant data
* Build automated detection, alerting, and reporting workflows using Azure Logic Apps and Microsoft Sentinel
* Collaborate with the Information Security team to deliver actionable security insights and escalate incidents
* Continuously refine detection models based on evolving threats and application risk profiles
* Produce technical documentation and knowledge transfer to internal stakeholders
* Stay current with emerging threats, Azure security capabilities, and best practices in detection engineering and threat modelling
Required Skills & Experience
* Proven experience in Threat Modelling within complex application environments
* Strong hands-on experience with Microsoft Sentinel
* Experience working with Azure Log Analytics and log ingestion pipelines
* Proficiency in Kusto Query Language (KQL)
* Experience building automated workflows using Azure Logic Apps
* Solid understanding of:
* Application security principles
* Common threat categories
* Attack vectors and detection strategies
* Ability to work independently and collaboratively across teams
* Strong communication skills with the ability to present technical findings clearly
Desirable Experience
* Detection engineering or SOC engineering background
* Experience with large-scale enterprise application environments
* Knowledge of cloud security architecture (Azure preferred)
* Experience with security automation and orchestration