Security Engineer - MSS

We're the challenger in the cyber security market. As a founder-led organisation, we bring a fresh and direct approach to helping organisations improve their cyber security posture, reduce risk, and build resilience. Our vision is to be the world's most trusted security partner, enabling organisations to protect today and prepare for tomorrow. We exist to secure organisations, empowering them to thrive in a digital world. We live by our values: we are brave, we raise the bar, we tell it how it is, we own the outcome, and we care for all.

The Role

We're looking for a Security Engineer to join our team remotely from anywhere in the UK. You'll be working within Sekuro's Security Engineering team, a group of technical practitioners who've built and run robust security services for corporate enterprises across Australia, and now beyond. This is a hands-on role where your engineering, development, and scripting skills will be put to real use. You'll be designing, building, and maintaining the security technology platforms and services that underpin everything our Managed Security function delivers.

What You'll Do

• You'll design, develop, and maintain security technology platforms, systems, and services, making sure our capabilities are running the way they should.
• Working across cloud and on-premises environments, you'll lead initiatives to automate security processes and build the tools that make our platform smarter and more efficient.
• You'll translate complex client architectures into practical requirements, feeding into broader solution designs that actually solve real problems.
• Collaborating with both technical teams and business stakeholders, you'll manage expectations, drive change, and negotiate outcomes in environments that are rarely straightforward.
• You'll stay across product and technology roadmaps, identifying how current and emerging capabilities can be leveraged to build better solutions.
• Leading the onboarding and integration of new SOC clients into our services, you'll make sure they're ready for a smooth transition to operations.
• You'll own and drive our detection engineering capability, researching, developing, testing, and tuning detection content across our security platforms to ensure we're identifying real threats accurately and efficiently. This includes building detection-as-code pipelines, maintaining detection libraries, and continuously improving coverage against evolving threat landscapes.
• You'll also contribute to the development of DevSecOps capabilities, cross-functional business processes, and the broader growth of our SOC services and team knowledge.

What You'll Need

• You’ll bring at least two years of hands-on experience with Splunk Enterprise, including writing queries in SPL and designing dashboards, alongside three or more years of infrastructure management experience covering Windows and Linux servers, containers such as Docker and Kubernetes, and general virtual machine management.
• Strong knowledge of enterprise logging and log collection techniques is essential, as is a solid grasp of regular expressions.
• You’ll have demonstrable experience in detection engineering, including the development, testing, tuning, and lifecycle management of detection rules and use cases, ideally aligned to frameworks such as MITRE ATT&CK. Experience building detections-as-code workflows and working with detection validation tooling will be highly regarded.
• You’ll be comfortable working in multi-vendor and SaaS environments, and you’ll have experience with scripting languages to automate tasks and manipulate data.