Senior Security Operations Engineer

Senior Security Operations Engineer

Salary: £85,000-£95,000 + bonus + benefits

Location: UK – Remote

We’re working with worldwide leading retailer scaling its security function and is hiring a Senior Security Operations Engineer to lead the charge in building automation, refining incident response processes, and enhancing threat detection capabilities across its cloud and on-prem environments. You’ll play a hands-on role in shaping security operations, driving automation, and responding to complex security incidents.

You’ll be joining a high-impact security team at a pivotal point in the company’s growth. The role offers the chance to influence security strategy, develop scalable solutions, and work with cutting-edge cloud and security technologies – ideal for someone who thrives in fast-paced environments and enjoys solving deep technical challenges.

Key Responsibilities – Senior Security Operations Engineer:

• Act as a lead and technical escalation point on the most complex incidents and investigations.
• Design, build, and optimise security automation for monitoring, alerting, and incident response by engineering playbooks, workflows, and tool integrations (SIEM, EDR, SOAR).
• Act as a lead investigator on complex security incidents across cloud and on-prem environments and perform root cause analysis, forensic investigation, and coordinate response actions.
• Enhance threat detection, incident response, and vulnerability management in AWS and Azure

Key Requirements – Senior Security Operations Engineer:

• 4+ years of hands-on experience in security operations or incident response, with a proven track record of designing and implementing security automation.
• Strong understanding of a variety of SIEM, EDR and SOAR tools as well as strong ability to utilise Python/SQL/Bash to fine tune and develop custom tools/rules for automation.
• Experience working in hybrid-cloud SOC environments – Azure/AWS preferably.
• Experience handling escalated or high-level incidents confidently and implement necessary solutions to minimise exposure.

If you’re passionate about automation, incident response, and cloud security and you’re wanting to make a real impact on how security operations are built and delivered in an internal function – click to apply or reach out directly at j.ryan@lawrenceharvey.com.