Overview
A leading international professional services company is seeking an experienced IT Security Operations Engineer to help protect and strengthen its IT environment. This role focuses on monitoring security threats, responding to incidents, managing vulnerabilities, and improving the organisation’s cybersecurity posture across cloud and on-premise systems.
Key Responsibilities
- Monitor and investigate security alerts across on-premise, cloud, and hybrid environments using SIEM, EDR/AV tools, and Microsoft 365 security platforms.
- Respond to and manage security incidents in line with ITIL processes, including root cause analysis and remediation.
- Identify and address vulnerabilities by monitoring CVE databases and implementing security updates or configuration changes.
- Manage and optimise Microsoft 365 security tools including Microsoft Defender, Entra ID, Conditional Access, and MFA.
- Track vulnerability remediation and support system and endpoint hardening.
- Support compliance initiatives such as ISO 27001 and GDPR, including audits and risk assessments.
- Collaborate with networking teams to secure firewalls, VPNs, proxies, and other network security controls.
- Maintain documentation, procedures, and security operational run books.
Skills & Experience
- Bachelor’s degree in Computer Science, IT, or a related field.
- 5+ years of experience in cybersecurity operations or engineering, regulated environment is desirable
- Strong experience with Microsoft 365 security technologies (Defender suite, Entra ID, Conditional Access, MFA).
- Hands-on experience with SIEM, EDR/ XDR, vulnerability management, and cloud security (Azure/ M365).
- Good understanding of network security concepts including firewalls, VPNs, IDS/IPS, DNS, and TCP/IP.
- Experience with PowerShell or other scripting for automation is desirable.
- Relevant certifications such as CISSP, CISM, CEH, or Microsoft security certifications are advantageous.
