Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join a dynamic team to secure IT infrastructure and respond to security incidents.
- Company: UK Research and Innovation drives research and innovation in the UK.
- Benefits: Enjoy 30 days annual leave, flexible working, and an outstanding pension scheme.
- Why this job: Be part of a fast-paced environment that values continuous learning and development.
- Qualifications: Professional certification and experience with cloud security and CI/CD pipelines required.
- Other info: Hybrid working available; applications close on 21st April 2025.
The predicted salary is between 45272 - 56844 £ per year.
Salary: £45,272 to £56,844 per annum dependent on skills and experience (this may include allowances)
Hours: Full time
Contract Type: Open ended
Location: Polaris House, Swindon or Keyworth, Nottingham (Hybrid working available)
Closing Date: Monday 21st April 2025
Security: As a minimum, due to the nature of this role, candidates must be eligible for clearance in line with UK National vetting guidelines and willing to undertake the process. The level of clearance required is security check.
Job Overview: This post provides a rare opportunity for an experienced information security professional to step into a fast-paced security operations role in an organisation at the heart of research and innovation in the UK. Working as part of a team of technical specialists, and to the Cloud Information Security Risk Manager, your broad remit is to ensure the security and integrity of the organisation's IT infrastructure. This role involves working closely with development, operations, architecture and security teams to implement and maintain secure systems and protocols, monitor for security threats, respond to incidents, and continuously improve the security posture.
Responsibilities:
- Implement security controls for cloud infrastructures (AWS and Azure).
- Develop and engineer cloud security policies, ensuring proactive threat prevention, detection, and forensic analysis.
- Implement security solutions for containerised environments and microservices (e.g., Kubernetes, Docker).
- Build and maintain security at every point in the CI/CD pipeline.
- Build and integrate security solutions into DevSecOps pipelines, collaborating with UKRI teams.
- Perform cloud threat modelling and implement countermeasures.
- Assess third-party cloud and on-premises solutions for security risks and recommend mitigations.
- Design and enforce cloud security policies, standards, and best practices.
- Monitor security compliance and ensure adherence throughout the project lifecycle and in business as usual cloud services.
- Monitor and respond to security incidents and alerts.
About you:
- A professional certification (e.g., CISM, CISSP, CompTIA Security+, CCSP or AWS certification).
- (S) Degree in a related subject or relevant comparable education.
- (S) Experience in major multi-cloud platforms, including AWS, and cloud security.
- (S&I) Integrating and maintaining security into CI/CD pipelines.
- (I) Hands on experience with container security (Kubernetes, ECS, Docker).
- (S&I) Working with Linux and/or Windows operating systems.
- (S) Experience working in a blue-team type environment or role.
- (S) Experience of cloud security posture management tools.
- (S) Performing comprehensive security audits and risk assessments.
Benefits: We recognise and value our employees as individuals and aim to provide a favourable pay and rewards package! We are committed to supporting employees’ development and promote a culture of continuous learning! A list of benefits below:
- An outstanding defined benefit pension scheme.
- 30 days’ annual leave in addition to 10.5 public and privilege days (full time equivalent).
- Employee discounts and offers on retail and leisure activities.
- Employee assistance programme, providing confidential help and advice.
- Flexible working options.
How to Apply: Candidates will need to submit a written application which consists of 2 parts:
- A CV – this should contain your work experience and any skills, qualifications and accomplishments relevant to the jobs you have completed based on the shortlisting criteria.
- A personal statement (max. 1000 words) - this statement should be used to provide examples of how you meet the essential criteria listed in the shortlisting criteria.
Applications will be reviewed for suitability and shortlisted against the criteria detailed in the shortlisting criteria section of the job description. Further information on the selection process is listed on our careers page.
Security Operations (SecOps) Engineer employer: UK Research and Innovation
Contact Detail:
UK Research and Innovation Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Security Operations (SecOps) Engineer
✨Tip Number 1
Familiarise yourself with the specific security tools and technologies mentioned in the job description, such as AWS, Azure, Kubernetes, and Docker. Having hands-on experience or relevant projects to discuss can really set you apart during interviews.
✨Tip Number 2
Network with professionals in the field of security operations, especially those who work with cloud infrastructures. Attend industry events or join online forums to gain insights and potentially get referrals that could help your application stand out.
✨Tip Number 3
Prepare for technical interviews by brushing up on your knowledge of security compliance and incident response strategies. Be ready to discuss real-world scenarios where you've implemented security measures or responded to incidents.
✨Tip Number 4
Showcase your commitment to continuous learning by mentioning any recent certifications or courses related to cloud security or DevSecOps. This demonstrates your dedication to staying current in a rapidly evolving field.
We think you need these skills to ace Security Operations (SecOps) Engineer
Some tips for your application 🫡
Understand the Job Requirements: Carefully read the job description for the Security Operations (SecOps) Engineer role. Make note of the essential criteria and responsibilities, as these will guide your application.
Craft a Tailored CV: Your CV should highlight relevant work experience, skills, and qualifications that align with the job requirements. Focus on your experience with cloud security, CI/CD pipelines, and any certifications you hold.
Write a Compelling Personal Statement: In your personal statement, provide specific examples that demonstrate how you meet the essential criteria. Use clear and concise language, and ensure you stay within the 1000-word limit.
Proofread and Edit: Before submitting your application, thoroughly proofread both your CV and personal statement. Check for spelling and grammatical errors, and ensure that all information is accurate and well-presented.
How to prepare for a job interview at UK Research and Innovation
✨Know Your Security Fundamentals
Make sure you have a solid understanding of security principles, especially those related to cloud infrastructures like AWS and Azure. Be prepared to discuss specific security controls and policies you've implemented in previous roles.
✨Demonstrate Your Technical Skills
Be ready to showcase your hands-on experience with container security and CI/CD pipelines. You might be asked to solve technical problems or explain how you would approach certain security challenges, so brush up on relevant tools and technologies.
✨Prepare for Scenario-Based Questions
Expect questions that assess your problem-solving skills in real-world scenarios. Think about past incidents you've managed or how you would respond to potential security threats, and be ready to articulate your thought process clearly.
✨Highlight Your Certifications and Continuous Learning
Mention any relevant certifications you hold, such as CISM, CISSP, or AWS certifications. Also, discuss your commitment to continuous learning and staying updated with the latest security trends and best practices, as this is crucial in a fast-paced environment.
