Senior Security Engineer

Senior Security Engineer

£80,000 + Bonus + Benefits + Training

Hybrid (Portsmouth, UK)

Company & Role

This is an opportunity to join a fast growing, people first global service provider that is redefining what excellence in cyber defence looks like.

With over $1B in global revenue, this organisation delivers end to end IT outsourcing and managed services to customers across enterprise, public sector and fast growing scale ups. Its Security Practice protects clients through capabilities including Managed Detection and Response (MDR), Threat Hunting, Vulnerability Management, Penetration Testing and Incident Response, supported by a consulting led Security Advisory practice.

As a Senior Security Engineer, you will be responsible for designing, implementing and maintaining the tools, platforms and integrations that power the company’s Security Operations Centre and Cyber Defence services. This role blends hands on technical engineering with solution design and automation, ideal for someone who thrives on solving complex problems, improving processes and enabling analysts to detect and respond faster.

Why This Role Stands Out

• Join a $1B global IT and Cyber Defence provider investing heavily in people, platforms and innovation

• Shape and enhance the SOC’s technical foundations, influencing how detection and response evolves

• Work with cutting edge tools across Microsoft, Elastic, Palo Alto, Splunk and other leading technologies

• Hybrid working, flexible hours and a culture built on trust, growth and inclusion

• Paid training and certification pathways with clear routes into consultancy or leadership

What You’ll Be Doing

• Designing, deploying and maintaining core SOC technologies including SIEM, EDR, SOAR, threat intelligence and logging infrastructure

• Developing and refining detection use cases, correlation rules and analytics content

• Building automation workflows and integrations through scripting or automation platforms

• Collaborating with SOC analysts to improve visibility, telemetry and response efficiency

• Engineering secure log ingestion pipelines across hybrid cloud and on prem environments

• Supporting onboarding of new clients into the SOC to ensure correct configuration and data flow

• Contributing to threat hunting and detection engineering initiatives

• Maintaining documentation, diagrams and configuration standards

• Mentoring junior engineers and analysts and sharing best practice

What You’ll Bring

• 3 to 5 years of experience in a SOC, security engineering or cyber operations environment

• Hands on experience with SIEM or EDR platforms such as Microsoft Sentinel, Splunk, Defender, CrowdStrike or Elastic

• Proven ability to build and tune detection rules, dashboards and automation playbooks

• Knowledge of scripting or automation using KQL, PowerShell, Python or similar

• Familiarity with log management, APIs and data normalisation

• Understanding of cloud security across Azure, AWS and M365

• Strong grasp of network, system and identity security fundamentals

• Analytical mindset and passion for problem solving and continuous improvement

Desirable Experience

• Experience with SOAR platforms such as Microsoft Sentinel Automation, Cortex XSOAR or Splunk SOAR

• Knowledge of MITRE ATT&CK mapping and detection engineering frameworks

• Experience using Infrastructure as Code such as Terraform, Bicep or ARM templates

• Integration experience with ServiceNow or ITSM tools

• Exposure to threat hunting, vulnerability management or red team automation

What You’ll Get

• Competitive salary £65,000 to £85,000 depending on experience

• Hybrid and flexible working arrangements

• Funded training and certification pathways

• Pension, healthcare and wellbeing support

• Collaborative, inclusive culture focused on trust and professional growth

If you are ready to take the next step in your cyber engineering career and want to do it in a company that invests in your development, values your input and celebrates success together, this is your opportunity to help engineer the future of cyber defence.