Senior Security Operations Engineer

We are seeking a Senior Security Operations Engineer with deep expertise in the Microsoft security ecosystem, strong operational security experience, and a passion for protecting modern cloud environments. This is a hands‑on senior role within the security operations function, responsible for the design, operation, and continuous improvement of security controls across Microsoft 365, Azure security tooling, AWS environments, enterprise email platforms, and SIEM/SOC capabilities. The role also plays a key part in incident response, security monitoring, and providing clear visibility of security posture to both technical and senior stakeholders.

What Will You Be Doing

• Work with the Head of Information Security to design, implement, and manage security solutions across Microsoft, AWS and SOC environments.
• Investigation of information security incidents in accordance with the security incident management standard; produce reports with recommendations and ensure any remedial action is taken.
• Mentor and guide junior security staff in Microsoft and AWS security, email security platforms, and SOC best practices.
• Collaborate with internal stakeholders to develop relationships to help promote and improve information security and provide security advice on architecture, procurements, projects, and new initiatives as required.
• Collaborate with the external SOC team to monitor and analyse security alerts, providing timely responses and escalations.
• Conduct regular security assessments across the Microsoft 365 environment, AWS infrastructure, email security platforms, and SOC tooling to identify vulnerabilities and recommend mitigations.
• Maintain and expand SIEM solutions within company environments to enable efficient event collection, correlation, and response.
• Create, maintain, and enforce information security policies tailored to Microsoft 365, AWS, email security, SIEM, and SOC technologies.
• Administer and continuously improve email security platforms, covering anti‑phishing, anti‑spoofing, DKIM/DMARC/SPF, safe links/attachments, mail flow rules, and email DLP policies.
• Produce reports to provide assurance of the company’s security posture and ensure transparent visibility for the management team.
• Stay up to date with the latest security trends, technologies, and threats relevant to company environments.

Skills And Experience

• Self‑motivated, curious character with a passion for security, who thrives in a collaborative and friendly team environment.
• Bachelor's degree in computer science, Information Technology, or related field (master's preferred).
• Relevant experience will be considered with Microsoft and AWS Security certifications strongly preferred.
• A minimum of 5 years of experience in information security, with at least 3 years focusing on Microsoft and AWS security, SIEM and SOC.
• In‑depth and proven knowledge of the Microsoft Defender suite (Endpoint, Identity, Cloud Apps), Conditional Access policy design, Intune MDM/MAM, and Microsoft Sentinel.
• Hands‑on experience with Microsoft Purview, including data classification, sensitivity labels, data loss prevention (DLP) policies, insider risk management, and compliance portal administration.
• Working knowledge of AWS security services (GuardDuty, Security Hub, IAM, CloudTrail).
• Demonstrable expertise in enterprise email security platforms, e.g., Mimecast, Proofpoint, and Microsoft Defender for Office 365.
• Knowledge of network security, including firewall management, network segmentation, zero‑trust architecture, VPN technologies, intrusion detection/prevention systems (IDS/IPS), and network traffic analysis.
• Ideally, experience delivering security in a DevSecOps environment.
• Demonstrable strong analytical and problem‑solving skills.
• Excellent communication skills, both written and verbal.

What’s In It For You

• Competitive salary and company bonus scheme
• Group pension scheme
• Group healthcare and life assurance scheme
• Hybrid working environment (currently one day in office)
• 25 days annual holiday with incremental increase up to 30 days
• Subsidised gym membership
• Season ticket travel loan
• Cycle to work scheme
• Flexible benefits platform (ability to buy additional medical cover, life assurance, dental cover, holiday, critical illness, travel insurance & health screening)
• Extensive internal and external training