Senior Security Engineer

We’re looking for a Security Engineer to support the operation, optimisation, and continuous improvement of enterprise security platforms across a complex client environment. You’ll work closely with SOC analysts, engineers, and client teams to ensure tooling is effective, resilient, and aligned to evolving threats.

• Maintain and optimise security platforms including SIEM (Microsoft Sentinel), Defender stack, vulnerability management, DLP, and cloud security tools
• Ensure platforms are integrated, performing effectively, and aligned to client requirements
• Support incident response by resolving platform issues, enabling telemetry, and making technical changes where required
• Deploy and tune detection rules, improving alert quality and reducing false positives
• Support automation initiatives (e.g. SOAR, LogicApps) to drive operational efficiency
• Collaborate with SOC providers and internal teams on platform performance, log ingestion, and ongoing improvements
• Maintain clear documentation and operate within change control and compliance frameworks

• Strong hands-on experience with Microsoft Sentinel, Defender, and security tooling in a SOC or managed services environment
• Experience across SIEM, EDR/XDR, vulnerability scanning, and cloud security
• Knowledge of detection engineering, log pipelines, and threat frameworks (e.g. MITRE ATT&CK)
• Scripting/automation skills (PowerShell, Python, or similar)
• Solid understanding of networking, Azure, and security architecture
• Experience working in regulated environments is advantageous

• Analytical problem solver with strong technical depth
• Collaborative and able to work across technical and non-technical teams
• Proactive, detail-oriented, and accountable for platform health
• Strong communicator with a client-focused mindset

• Eligible for UK security clearance (SC/NPPV)
• Relevant certifications (e.g. AZ-500, SC-200, Security+) desirable