Security Operations Engineer

Overview

We are looking for a proactive and technically skilled Cyber Security Analyst / Security Operations Engineer to join our IT Security team. This role is focused on monitoring, investigating, and responding to security alerts across our environment using Rapid7 and Microsoft Defender platforms.

The successful candidate will play a key role in maintaining and improving the organisations security posture by identifying threats, investigating potential compromises, and proactively recommending security improvements.

Key Responsibilities

• Monitor security systems including Rapid7 and Microsoft Defender on a 24/7 operational basis
• Investigate and respond to security alerts, incidents, and suspicious activity
• Analyse potential threats and determine whether systems have been compromised
• Conduct detailed investigations and provide clear documentation of findings
• Identify security weaknesses, vulnerabilities, and gaps within the environment
• Recommend and implement improvements to strengthen overall security posture
• Assist with incident response and remediation activities
• Support and deliver internal IT security awareness and training initiatives
• Participate in and contribute to security-related projects and improvements
• Work closely with IT teams to ensure security best practices are followed
• Continuously evaluate opportunities for quick-win security enhancements and process improvements
• Maintain awareness of emerging threats, vulnerabilities, and industry best practices

Essential Skills & Experience

• Strong hands-on experience with Rapid7
• Strong hands-on experience with Microsoft Defender
• Experience monitoring and responding to security alerts in a SOC or security-focused environment
• Knowledge of endpoint security, threat detection, and incident response processes
• Understanding of cybersecurity principles, vulnerabilities, and attack techniques
• Ability to investigate and analyse security events effectively
• Experience identifying security gaps and recommending remediation actions
• Security project experience
• Excellent problem-solving and communication skills
• Ability to work independently and proactively improve security operations

Desirable Skills

• Experience with SIEM technologies
• Familiarity with vulnerability management and patching processes
• Knowledge of Microsoft 365 security technologies
• Security certifications such as Security+, SC-200, SC-300, CEH, or CISSP
• Experience delivering security awareness training

JBRP1_UKTJ