Security Operations Engineer

As our SecOps Platform Engineer, you'll help build and evolve the foundational security capabilities that keep our infrastructure, endpoints, and data safe. You'll be instrumental in shaping our security operations, delivering scalable solutions, and working across teams to embed secure practices into everything we do. This is a unique opportunity to be part of a growing, hands-on SecOps function where your input will have a direct and lasting impact on how we protect our business and customers.

What You'll Be Doing;

Endpoint Security;

• Improve security across Windows and macOS devices using Microsoft Intune, Defender for Endpoint, Jamf Pro and Jamf Protect.
• Contribute to a strategic initiative to move toward work-only computing, including lockdown policies, EPM, software whitelisting, and alerting.

Vulnerability Management;

• Continuously assess vulnerabilities using tools like Azure Advisor, Defender for Cloud, and Defender XDR
• Work closely with Systems Engineering and Development teams to prioritize and remediate critical risks.

Security Engineering & Operations;

• Design, implement, and manage security tools across cloud and endpoint environments.
• Monitor, detect, and respond to security threats, incidents, and suspicious behaviour.

Cloud Security & Architecture;

• Review and enhance network security, including firewall rules, NSGs, WAFs, and network design.
• Ensure secure cloud configurations and enforce best practices using Azure-native controls and policies.

Compliance & SOC 2 Readiness;

• Lead implementation and validation of security controls aligned with SOC 2 and ISO standards.
• Document processes and participate in internal audits and evidence gathering.

Collaboration & Enablement;

• Partner with cross-functional teams to embed security into development, infrastructure, and IT practices.
• Engage with Managed Security Service Providers (MSSPs) to drive continuous improvement.

Do you have experience in macOS?, * Proven experience in Security Operations, DevSecOps, or similar roles, in Azure environments.

• Demonstrable experience with Azure security services such as; Entra ID, Sentinel, Defender suite, Azure Policy, Firewall, and Log Analytics.
• Good understanding of security operations including threat detection, response, monitoring, and incident handling.
• Experience with identity & Access Management (IAM), endpoint security, and cloud-native controls.
• Experience with Microsoft Intune, Jamf Suite, Conditional Access, DLP, MFA, and compliance policies, including SOC2 and ISO27001.
• Previously used scripting tools such as (PowerShell, Python, Bash, KQL, or SQL).

You'll stand out from the crowd if you also have;

• Certifications such as AZ-500, SC-200, CISSP, CISM, SSCP, or CCSP.
• Familiarity with Microsoft 365 forensics and incident response.
• Used other tools such as Jira, Confluence, ClickUp.

Pulled from the full job description

• Annual leave
• Employee discount
• Private medical insurance
• Discounted gym membership
• Car scheme, Time Off - 25 days annual leave (+ bank holidays), increasing with length of service, plus an extra day off for your birthday! We also operate summer hours so you can make the most of the sunshine. Learning & Development - Access a vast range of courses through our learning platform and benefit from structured career progression plans to support your growth. Health & Wellbeing - Private Medical Insurance, a healthcare cash plan, and mental health support via Help@Hand. Plus, we'll ensure you have a safe and productive home setup with a workspace assessment. Giving Back - Take paid volunteer days to support your local community, donate to your chosen charity through salary sacrifice (we'll match it!), and make a difference with Give as You Earn. Extra Perks - A car purchase scheme to make buying a new car easier, plus access to additional benefits through our online platform, including gym discounts.

Plus much more!

At Retail Insight (RI), we're proud to work with some of the world's largest grocery retailers and consumer goods brands. As we continue to scale and innovate, security is at the heart of everything we do. Our cloud-first approach - with Microsoft Azure as our primary platform - allows us to move fast while staying secure, compliant, and resilient.