Senior Security Engineer

Role Overview We're looking for a Security Engineer to support the operation, optimisation, and continuous improvement of enterprise security platforms across a complex client environment. You'll work closely with SOC analysts, engineers, and client teams to ensure tooling is effective, resilient, and aligned to evolving threats. Key Responsibilities Maintain and optimise security platforms including SIEM (Microsoft Sentinel), Defender stack, vulnerability management, DLP, and cloud security tools Ensure platforms are integrated, performing effectively, and aligned to client requirements Support incident response by resolving platform issues, enabling telemetry, and making technical changes where required Deploy and tune detection rules, improving alert quality and reducing false positives Support automation initiatives (e.g.

SOAR, LogicApps) to drive operational efficiency Collaborate with SOC providers and internal teams on platform performance, log ingestion, and ongoing improvements Maintain clear documentation and operate within change control and compliance frameworks Skills & Experience Strong hands-on experience with Microsoft Sentinel, Defender, and security tooling in a SOC or managed services environment Experience across SIEM, EDR/XDR, vulnerability scanning, and cloud security Knowledge of detection engineering, log pipelines, and threat frameworks (e.g. MITRE ATT&CK) Scripting/automation skills (PowerShell, Python, or similar) Solid understanding of networking, Azure, and security architecture Experience working in regulated environments is advantageous Personal Attributes Analytical problem solver with strong technical depth Collaborative and able to work across technical and non-technical teams Proactive, detail-oriented, and accountable for platform health Strong communicator with a client-focused mindset Additional Requirements Eligible for UK security clearance (SC/NPPV) Relevant certifications (e.g. AZ-500, SC-200, Security+) desirable