SecOps Engineer

SecOps Engineer - Central London

Up to -75,000 PA

Well-established and highly profitable construction engineering business is seeking an experienced SecOps Engineer to join them on a permanent basis. This is a critical leadership role within an organisation undergoing significant digital transformation, with ambitious growth and acquisition plans driving demand for scalable, standardised and efficient business applications.

This role is ideal for a proactive security professional with strong technical expertise across application, network and infrastructure security. You will play a key part in implementing security controls, mitigating risk and contributing to the continuous improvement of the company''s overall security posture.

Responsibilities:

• Monitor security tools including SIEM (QRadar) and respond to threat detection alerts
• Triage, analyse and prioritise security (via ServiceNow)
• Investigate root causes of security issues and design effective remediation solutions
• Oversee Patch Management
• Conduct vulnerability scans with Qualys, analyse results and prioritise remediation
• Document SecOps processes and create knowledge base articles in line with best practices
• Automate security tasks and toolchains using scripting (PowerShell, Batch, etc.)
• Collaborate with external SOC teams
• Prepare post-incident reports and root cause analyses
• Manage end-user device (EUD) security via MS Intune, Sophos and NinjaOne
• Schedule and assess vulnerability scans on critical infrastructure
• Maintain patching compliance for OS, Microsoft Office and third-party applications
• Support infrastructure teams to deploy systems, enhance security policies and manage security-driven changes
• Produce weekly security operations reports
• Manage Cisco Umbrella web filtering and SSL inspection policies

Requirements:

• Previous hands-on experience in SecOps or Incident Response
• Recognised Security certifications such as Security+, CEH, or Microsoft security certifications
• Strong knowledge of Microsoft Windows OS security and hardening
• Working PowerShell scripting ability for automation tasks
• Solid understanding of cloud-native security across M365, Azure and AWS
• Experience with enterprise IT infrastructure

Any experience with the following will be highly favoured:

• Strong experience with Qualys
• Exposure to Varonis
• Network security knowledge or relevant certifications (TCP/IP, VPNs, routing, segmentation)
• Experience working with ServiceNow

Initially 4 days per week onsite, dropping to 3 once passed probation (this is not negotiable).