Security Operations Engineer - OUTSIDE IR35 CONTRACT

Security Operations Engineer Location: Remote/Hybrid (UK-based) - 2 days p/w onsite in either London or the East Midlands Rate: £500 - £600 p/d - OUTSIDE IR35

We are working with a high-growth, consumer-facing technology business that supports over 6 million members. As the platform continues to scale rapidly, we are looking for a Security Operations Engineer to join the existing security function and help strengthen, tune and evolve its security posture.

This is a hands-on technical role sitting at the intersection of security operations, cloud infrastructure and application security. You will work closely with the existing Security Engineer, helping to reduce operational pressure, improve signal-to-noise across security tooling, and drive more effective, actionable security outcomes across the platform.

Key Responsibilities:

• Support day-to-day security operations across a high-scale B2C platform
• Analyse and triage security alerts, turning high-volume signals into clear, actionable remediation steps
• Work with Cloudflare and related edge/security tooling to optimise configuration, rulesets and alerting
• Contribute to cloud security across AWS environments
• Assist in strengthening application security posture across APIs and customer-facing systems
• Investigate and respond to security events including fraud, account abuse and external threats
• Help improve detection quality and reduce alert fatigue across security tooling
• Provide a fresh analytical perspective on existing security monitoring and response processes
• Work closely with engineering teams to embed security best practices into delivery

Key Skills & Experience:

• Strong experience in Security Operations, Cloud Security or Application Security
• Hands-on knowledge of AWS security fundamentals and tools
• Experience working with Cloudflare
• Understanding of common web application attack patterns (OWASP, API abuse, credential stuffing, bot mitigation)
• Ability to interpret large volumes of security alerts and translate them into practical remediation actions
• Comfortable working in fast-paced, scaling environments
• Strong troubleshooting mindset with an ability to work independently
• Exposure to both infrastructure and application security domains

Nice to Have:

• Experience in SaaS, marketplace or high-traffic consumer platforms
• Exposure to SIEM/alerting platforms
• Knowledge of fraud patterns in consumer digital platforms (gift cards, payments, account abuse)
• Scripting or automation skills (Python, Bash, etc.)
• Experience improving detection rules, tuning alerts or reducing false positives

• Strong experience in Security Operations, Cloud Security or Application Security
• Hands-on knowledge of AWS security fundamentals and tools
• Experience working with Cloudflare
• Understanding of common web application attack patterns (OWASP, API abuse, credential stuffing, bot mitigation)
• Ability to interpret large volumes of security alerts and translate them into practical remediation actions
• Comfortable working in fast-paced, scaling environments
• Strong troubleshooting mindset with an ability to work independently
• Exposure to both infrastructure and application security domains

Nice to Have:

• Experience in SaaS, marketplace or high-traffic consumer platforms
• Exposure to SIEM/alerting platforms
• Knowledge of fraud patterns in consumer digital platforms (gift cards, payments, account abuse)
• Scripting or automation skills (Python, Bash, etc.)
• Experience improving detection rules, tuning alerts or reducing false positives