SecOps Engineer

SecOps Engineer - Central London

Up to £70,000 PA

Well-established and highly profitable construction engineering business is seeking an experienced SecOps Engineer to join them on a permanent basis. This is a critical leadership role within an organisation undergoing significant digital transformation, with ambitious growth and acquisition plans driving demand for scalable, standardised and efficient business applications.

This role is ideal for a proactive security professional with strong technical expertise across application, network and infrastructure security. You will play a key part in implementing security controls, mitigating risk and contributing to the continuous improvement of the company's overall security posture.

Responsibilities:

• Monitor security tools including SIEM (QRadar) and respond to threat detection alerts
  
  
• Triage, analyse and prioritise security (via ServiceNow)
  
  
• Investigate root causes of security issues and design effective remediation solutions
  
  
• Oversee Patch Management
  
  
• Conduct vulnerability scans with Qualys, analyse results and prioritise remediation
  
  
• Document SecOps processes and create knowledge base articles in line with best practices
  
  
• Automate security tasks and toolchains using scripting (PowerShell, Batch, etc.)
  
  
• Collaborate with external SOC teams
  
  
• Prepare post-incident reports and root cause analyses
  
  
• Manage end-user device (EUD) security via MS Intune, Sophos and NinjaOne
  
  
• Schedule and assess vulnerability scans on critical infrastructure
  
  
• Maintain patching compliance for OS, Microsoft Office and third-party applications
  
  
• Support infrastructure teams to deploy systems, enhance security policies and manage security-driven changes
  
  
• Produce weekly security operations reports
  
  
• Manage Cisco Umbrella web filtering and SSL inspection policies
  
  Requirements:
  
  
• Previous hands-on experience in SecOps or Incident Response
  
  
• Recognised Security certifications such as Security+, CEH, or Microsoft security certifications
  
  
• Strong knowledge of Microsoft Windows OS security and hardening
  
  
• Working PowerShell scripting ability for automation tasks
  
  
• Solid understanding of cloud-native security across M365, Azure and AWS
  
  
• Experience with enterprise IT infrastructure
  
  Any experience with the following will be highly favoured:
  
  
• Strong experience with Qualys
  
  
• Exposure to Varonis
  
  
• Network security knowledge or relevant certifications (TCP/IP, VPNs, routing, segmentation)
  
  
• Experience working with ServiceNow
  
  Please note; this role is 4 days per week onsite initially (dropping to 3 once passed probation). Working hours are 08:00 - 17:00