SecOps Engineer

SecOps Engineer - Central London

Up to £75,000 PA

Well-established and highly profitable construction engineering business is seeking an experienced SecOps Engineer to join them on a permanent basis.

This is a critical leadership role within an organisation undergoing significant digital transformation, with ambitious growth and acquisition plans driving demand for scalable, standardised and efficient business applications.

This role is ideal for a proactive security professional with strong technical expertise across application, network and infrastructure security.

You will play a key part in implementing security controls, mitigating risk and contributing to the continuous improvement of the company's overall security posture.

Responsibilities:

• Monitor security tools including SIEM (QRadar) and respond to threat detection alerts


• Triage, analyse and prioritise security (via ServiceNow)


• Investigate root causes of security issues and design effective remediation solutions


• Oversee Patch Management


• Conduct vulnerability scans with Qualys, analyse results and prioritise remediation


• Document SecOps processes and create knowledge base articles in line with best practices


• Automate security tasks and toolchains using scripting (PowerShell, Batch, etc.)


• Collaborate with external SOC teams


• Prepare post-incident reports and root cause analyses


• Manage end-user device (EUD) security via MS Intune, Sophos and NinjaOne


• Schedule and assess vulnerability scans on critical infrastructure


• Maintain patching compliance for OS, Microsoft Office and third-party applications


• Support infrastructure teams to deploy systems, enhance security policies and manage security-driven changes


• Produce weekly security operations reports


• Manage Cisco Umbrella web filtering and SSL inspection policies

Requirements:

• Previous hands-on experience in SecOps or Incident Response


• Recognised Security certifications such as Security+, CEH, or Microsoft security certifications


• Strong knowledge of Microsoft Windows OS security and hardening


• Working PowerShell scripting ability for automation tasks


• Solid understanding of cloud-native security across M365, Azure and AWS


• Experience with enterprise IT infrastructure

Any experience with the following will be highly favoured:

• Strong experience with Qualys


• Exposure to Varonis


• Network security knowledge or relevant certifications (TCP/IP, VPNs, routing, segmentation)


• Experience working with ServiceNow

Initially 4 days per week onsite, dropping to 3 once passed probation (this is not negotiable).