SecOps Engineer - Central London
For a complete understanding of this opportunity, and what will be required to be a successful applicant, read on.
Up to £75,000 PA
Well-established and highly profitable construction engineering business is seeking an experienced SecOps Engineer to join them on a permanent basis. This is a critical leadership role within an organisation undergoing significant digital transformation, with ambitious growth and acquisition plans driving demand for scalable, standardised and efficient business applications.
This role is ideal for a proactive security professional with strong technical expertise across application, network and infrastructure security. You will play a key part in implementing security controls, mitigating risk and contributing to the continuous improvement of the company's overall security posture.
Responsibilities:
* Monitor security tools including SIEM (QRadar) and respond to threat detection alerts
* Triage, analyse and prioritise security (via ServiceNow)
* Investigate root causes of security issues and design effective remediation solutions
* Oversee Patch Management
* Conduct vulnerability scans with Qualys, analyse results and prioritise remediation
* Document SecOps processes and create knowledge base articles in line with best practices
* Automate security tasks and toolchains using scripting (PowerShell, Batch, etc.)
* Collaborate with external SOC teams
* Prepare post-incident reports and root cause analyses
* Manage end-user device (EUD) security via MS Intune, Sophos and NinjaOne
* Schedule and assess vulnerability scans on critical infrastructure
* Maintain patching compliance for OS, Microsoft Office and third-party applications
* Support infrastructure teams to deploy systems, enhance security policies and manage security-driven changes
* Produce weekly security operations reports
* Manage Cisco Umbrella web filtering and SSL inspection policies
Requirements:
* Previous hands-on experience in SecOps or Incident Response
* Recognised Security certifications such as Security+, CEH, xsngvjr or Microsoft security certifications
* Strong knowledge of Microsoft Windows OS security and hardening
* Working PowerShell scripting ability for automation tasks
* Solid understanding of cloud-native security across M365, Azure and AWS
* Experience with enterprise IT infrastructure
Any experience with the following will be highly favoured:
* Strong experience with Qualys
* Exposure to Varonis
* Network security knowledge or relevant certifications (TCP/IP, VPNs, routing, segmentation)
* Experience working with ServiceNow
Initially 4 days per week onsite, dropping to 3 once passed probation (this is not negotiable).