Security Engineer

About the Company

The best of all worlds: join Avolution, a highly regarded, worldwide, financially sound and growing 20-year-old Enterprise Architecture Software company. With offices in London, Sydney, Northern Virginia and Singapore, Avolution is established as an industry leader in its Gartner Magic Quadrant and other industry reports. Be part of a smart, friendly team, and use your skills and initiative to drive growth. Benefit from our culture which is described by employees as collegial, collaborative, flexible, and supportive.

Key Responsibilities

• Design, manage, and enhance security configurations across Azure and AWS environments, including integration with Office 365.
• Implement and enforce best practices for identity and access management (IAM) in Azure AD (Entra ID) and AWS IAM.
• Monitor cloud workloads for vulnerabilities, misconfigurations, and threats using tools like Microsoft Defender.
• Collaborate with DevOps/Engineering teams to embed security controls into CI/CD pipelines and promote DevSecOps practices.
• Conduct security assessments, including assisting with penetration testing, risk evaluations, to identify and mitigate potential issues.

Endpoint & Identity Security

• Enhance device posture, compliance, and management using Microsoft Intune and Defender for Endpoint.
• Develop and maintain robust conditional access, multi-factor authentication (MFA), and endpoint protection policies.
• Oversee secure identity lifecycle processes, enforcing least‑privilege access and zero‑trust principles.

IT Operations & Employee Support

• Act as the primary on‑site and remote IT support contact for employees.
• Provision and troubleshoot Windows laptops via Intune (enrollment, software deployment, basic hardware issues).
• Manage user onboarding/offboarding (Office 365, Azure AD, VPN, Wi‑Fi, hardware handover).
• Resolve day‑to‑day employee issues (Teams, OneDrive, Outlook, printers, VPN connectivity, etc.).
• Maintain inventory of laptops, peripherals, and office IT equipment.
• Support meeting‑room AV/setup and occasional hands‑on help in the London office.
• Document common issues and maintain internal IT knowledge base.

Security Operations

• Respond to security alerts, incidents, and vulnerabilities with timely investigations and remediation.
• Perform regular risk assessments, security reviews, internal audits.
• Manage and optimize security tools (e.g., SIEM, EDR, vulnerability scanners, Microsoft Defender suite).
• Lead incident response efforts and coordinate with cross‑functional teams.

Compliance & Governance

• Support ISO 27001:2022 recertification, continuous compliance activities, and internal audits.
• Prepare for and assist in achieving additional compliance certifications (e.g., SOC 2, GDPR) to support company growth.
• Develop, maintain, and improve security policies, procedures, and technical documentation.
• Track, report on, and remediate audit findings or compliance gaps.

Collaboration & Culture

• Partner with global distributed teams across EMEA, AMER, and APAC regions.
• Educate internal teams on security best practices and foster a security‑first culture through training and awareness programs.

Requirements

• 3+ years of experience in Security Engineering, Cloud Security, IT Operations, or similar roles.
• Hands‑on expertise with Azure, AWS, Microsoft Intune, Defender suite, and Azure AD.
• Solid knowledge of cloud security standards (e.g., CIS Benchmarks, NIST, SOC 2).
• Experience with SIEM, EDR, vulnerability scanning, and security monitoring tools.
• Familiarity with ISO 27001 or other compliance frameworks.
• Understanding of network security concepts (e.g., VPN, firewalls, zero‑trust architectures).
• Excellent communication skills and ability to thrive in a global, distributed environment.

Nice‑to‑Have

• Experience in a SaaS or fully cloud‑native company.
• Automation and scripting skills (e.g., PowerShell, Python, Terraform).
• Knowledge of DevSecOps practices and tools.
• Relevant security certifications (e.g., Microsoft AZ‑500, AWS Security Specialty, CCSP, CISSP, ISO 27001 Lead Implementer/Auditor).
• Experience with Microsoft 365 security configurations or data privacy regulations (e.g., GDPR).

Benefits

• Flexible working.
• 25 days annual leave + bank holidays.
• 1 day of birthday leave per year.
• Private Medical Insurance which includes gym membership discounts and many other rewards.
• Dental, Vision and Hearing insurance cover.
• Pension Scheme.
• Cycle to Work scheme.

All applicants must have right to work in the United Kingdom. Avolution is an equal opportunities employer.

Location: London, England, United Kingdom.