SecOps Engineer

SecOps Engineer - Central London

Up to £70,000 PA

Well-established and highly profitable construction engineering business is seeking an experienced SecOps Engineer to join them on a permanent basis. This is a critical leadership role within an organisation undergoing significant digital transformation, with ambitious growth and acquisition plans driving demand for scalable, standardised and efficient business applications.

This role is ideal for a proactive security professional with strong technical expertise across application, network and infrastructure security. You will play a key part in implementing security controls, mitigating risk and contributing to the continuous improvement of the company's overall security posture.

Responsibilities:

* Monitor security tools including SIEM (QRadar) and respond to threat detection alerts

* Triage, analyse and prioritise security (via ServiceNow)

* Investigate root causes of security issues and design effective remediation solutions

* Oversee Patch Management

* Conduct vulnerability scans with Qualys, analyse results and prioritise remediation

* Document SecOps processes and create knowledge base articles in line with best practices

* Automate security tasks and toolchains using scripting (PowerShell, Batch, etc.)

* Collaborate with external SOC teams

* Prepare post-incident reports and root cause analyses

* Manage end-user device (EUD) security via MS Intune, Sophos and NinjaOne

* Schedule and assess vulnerability scans on critical infrastructure

* Maintain patching compliance for OS, Microsoft Office and third-party applications

* Support infrastructure teams to deploy systems, enhance security policies and manage security-driven changes

* Produce weekly security operations reports

* Manage Cisco Umbrella web filtering and SSL inspection policies

Requirements:

* Previous hands-on experience in SecOps or Incident Response

* Recognised Security certifications such as Security+, CEH, or Microsoft security certifications

* Strong knowledge of Microsoft Windows OS security and hardening

* Working PowerShell scripting ability for automation tasks

* Solid understanding of cloud-native security across M365, Azure and AWS

* Experience with enterprise IT infrastructure

Any experience with the following will be highly favoured:

* Strong experience with Qualys

* Exposure to Varonis

* Network security knowledge or relevant certifications (TCP/IP, VPNs, routing, segmentation)

* Experience working with ServiceNow

Please note; this role is 4 days per week onsite initially (dropping to 3 once passed probation). Working hours are 08:00 - 17:00.