Security Operations Engineer (FTC)
Fixed Term Contract £60,000 - £66,000 / yearJob Overview
We are seeking a Security Operations Engineer to join the Information Security team within our IT function on a 9-month fixed-term basis. This role supports the monitoring, investigation and response to security threats across the firm’s systems, networks and cloud environments.
This is a hands-on role suited to someone who has operated within an established security operations environment and is comfortable independently investigating alerts, determining root cause and working with technical teams to resolve incidents. The role will also support improvements to detection capability and security monitoring.
This position is not a trainee or entry-level SOC role. We are looking for someone who can contribute immediately within a mature security environment.
This is a hands-on role suited to someone who has operated within an established security operations environment and is comfortable independently investigating alerts, determining root cause and working with technical teams to resolve incidents. The role will also support improvements to detection capability and security monitoring.
This position is not a trainee or entry-level SOC role. We are looking for someone who can contribute immediately within a mature security environment.
Key Responsibilities
- Investigate and respond to security alerts across endpoint, network and cloud environments
- Analyse logs and telemetry to identify indicators of compromise and potential threats
- Support incident investigations and coordinate remediation with internal technical teams
- Develop or refine detection rules and monitoring capability
- Support vulnerability management activities and follow up on remediation actions
- Assist with penetration testing coordination and remediation tracking
- Contribute to security monitoring improvements and automation where appropriate
- Support security compliance activities aligned to ISO27001 and Cyber Essentials Plus
Skills, Knowledge & Expertise
- Experience working within a security operations or cyber defence environment
- Experience investigating security alerts and conducting incident analysis
- Experience using SIEM platforms and endpoint detection and response tools
- Strong understanding of networking and system behaviour (TCP/IP, DNS, HTTP/S)
- Ability to analyse security data across endpoint, network and cloud environments
- Experience working with security monitoring and threat detection tooling
- Scripting capability in Python, PowerShell or Bash
- Understanding of threat frameworks such as MITRE ATT&CK
- Experience with tools such as Microsoft Sentinel, Splunk, Defender, CrowdStrike, Tenable or Qualys would be beneficial.