Security Engineer

At Evri, we're strengthening our security posture across both IT and OT estates. As a Security Engineer, you'll build, configure and maintain security controls that keep our critical systems resilient, safe and reliable. You'll work hands-on with technologies spanning endpoint protection, SIEM, identity security, vulnerability management, and OT-specific safeguards-such as network segmentation, asset visibility and hardening of industrial control systems.

You'll partner closely with Infrastructure, Cloud, DevOps, OT Engineering and Architecture teams to identify and remediate vulnerabilities, investigate alerts, contribute to incident response, and continually uplift our detection, visibility and automation.

What you'll do

• Implement, configure and maintain security tooling (e.g., EDR/XDR, SIEM, firewalls, CASB, WAF, OT monitoring) across IT, cloud and OT environments.
• Integrate security controls into new and existing platforms and workloads-including cloud services, ICS and wider OT assets.
• Automate repetitive security tasks and operational processes (e.g., with PowerShell, Python or Bash) to improve consistency and reliability.
• Perform configuration hardening and technical security assessments across servers, cloud services, devices, networks and OT assets, driving remediation.
• Support incident response with technical investigation, containment and remediation across IT, cloud and OT systems.
• Contribute to architecture and solution design reviews, applying secure-by-design principles for IT, cloud and industrial systems.
• Enhance monitoring and detection by tuning alerts, improving log visibility and expanding telemetry coverage.
• Produce clear documentation, runbooks and engineering standards to enable consistent, repeatable operations.

Do you have experience in SIEM?, * Relevant certifications (e.g., CompTIA Security+, CISSP, AWS/Azure Associate level) or equivalent hands-on experience.

• Practical experience with core security technologies: EDR/XDR, SIEM, WAF, IDS/IPS, vulnerability scanners, CASB, email security, endpoint hardening.
• Proven experience implementing and maintaining security controls across cloud, on-prem and hybrid environments.
• Familiarity with security control frameworks (NIST CSF, CIS Controls, ISO 27001) and how engineering work contributes to compliance.
• Strong troubleshooting skills across infrastructure, applications and cloud.
• Ability to automate tasks with PowerShell, Python, Bash (or similar).

Nice to have

• Exposure to CI/CD pipelines or DevOps practices.
• Additional certifications (e.g., GIAC, CCSK, Microsoft Security Operations Analyst, or cloud platform fundamentals).

How you work

• Clear, collaborative communicator who partners effectively with Infrastructure, Cloud, DevOps and Service Operations teams.
• Able to translate technical topics into business-friendly language and influence decisions with well-reasoned recommendations.
• Curiosity, ownership and a proactive mindset-constantly seeking to improve systems, tooling and processes through build, deployment and tuning.

The impact you'll make

• Uplift detection capability, vulnerability management and hardening.
• Improve operational effectiveness through automation and smarter tooling.
• Strengthen incident response through timely investigation, containment and remediation.

Salary: Up to £70,000, depending on experience, plus bonus and benefits