Job Description
Salary: Up to £70,000 + benefits
Location: Hybrid — 3 days per week in Guildford
This is an excellent opportunity to shape and mature a growing security capability within a forward-thinking, cloud-first environment.
Security & Infrastructure Engineer
My client is undergoing a major technology evolution, modernising and strengthening its hybrid cloud estate with a strong focus on security, resilience, and scalable growth. They are looking for a hands-on Security & Infrastructure Engineer to help elevate and continuously enhance their security posture across cloud, on-prem, and SaaS environments.
This is a practical engineering role suited to someone who enjoys operating at pace, solving complex problems, and driving security best practice across a diverse technology landscape.
Cloud & Infrastructure Security
* Configure and support Azure security capabilities (Defender, Firewall, Policy, monitoring, backup).
* Implement secure cloud architecture aligned to best practice landing zone principles.
* Manage conditional access, patching, and hybrid infrastructure security controls.
* Contribute to Infrastructure-as-Code and secure CI/CD practices.
Microsoft 365 & Identity Security
* Strengthen security across Microsoft 365, Entra ID, and associated services.
* Enhance identity governance, privileged access management, DLP, and data classification.
* Support Defender tooling and alert management.
Threat & Vulnerability Management
* Work with SOC partners to triage and respond to alerts.
* Conduct vulnerability assessments and coordinate remediation efforts.
* Enhance endpoint protection and XDR capabilities.
Security Operations & Compliance
* Harden Windows Server, Active Directory, endpoints, and virtual desktop environments.
* Maintain logging, monitoring, and alerting coverage.
* Support external audits and recognised security certifications (e.g., Cyber Essentials Plus, ISO 27001, SOC 2).
About You
* 3+ years’ experience in security engineering or cyber operations.
* Strong hands-on Azure and Microsoft 365 security expertise.
* Experience with vulnerability management and endpoint protection tooling.
* Solid understanding of Zero Trust principles and cloud security architecture.
* Comfortable working cross-functionally and influencing security best practice.
Relevant certifications (Microsoft Security, Azure, ISC2, CompTIA, CCSK) and experience with Infrastructure-as-Code frameworks are advantageous.