IT Security Engineer

We are looking for an IT Security Engineer specialising in Identity and Microsoft Security to join a growing technical team supporting a cloud-first strategy.

This role focuses on delivering and operating identity-led security controls aligned to Zero Trust and least-privilege principles. You will play a key role in securing access to systems, applications and data, ensuring controls are robust, auditable and enable the business to operate efficiently.

This is an excellent opportunity for someone looking to take the next step in their IT security career within a collaborative and forward-thinking environment.

Key Responsibilities

• Design, administer and optimise Microsoft Entra ID within a hybrid identity environment.
• Implement and manage Conditional Access, Privileged Identity Management (PIM) and Identity Protection controls.
• Operate and investigate identity and endpoint detections using the Microsoft Defender XDR suite.
• Identify, prioritise and drive remediation of vulnerabilities using tools such as Tenable and Microsoft Defender Vulnerability Management.
• Support identity-related threat detection, investigation and incident response.
• Collaborate with infrastructure and engineering teams to strengthen security posture.
• Contribute to continuous improvement of identity security processes and controls.
• Ensure alignment with security frameworks and audit requirements., * Develop a strong understanding of identity architecture and existing security controls.
• Begin contributing to improvements and identifying key risks.

90 Days:

• Deliver measurable enhancements to identity security aligned with Zero Trust principles.
• Actively contribute to vulnerability management and security reviews.

180 Days:

• Operate as a trusted subject matter expert in identity security.
• Demonstrate reduced risk, stable controls and strong audit readiness.

Working Conditions

• Hybrid/remote working environment
• Occasional out-of-hours support during security incidents or change windows
• Minimal travel for site visits as required

Equality & Accessibility

We are an equal opportunities employer and welcome applications from all backgrounds. This material is available in alternative formats upon request.

If you are passionate about identity security and want to play a key role in shaping a modern, cloud-first security environment, we would love to hear from you.

• Hands-on experience with Microsoft Entra ID in a hybrid identity environment.
• Strong knowledge of Conditional Access, Privileged Identity Management and Identity Protection.
• Experience working with Microsoft Defender XDR (including Defender for Identity and Endpoint).
• Experience contributing to vulnerability management programmes.
• Strong understanding of identity and authentication protocols (OAuth 2.0, OpenID Connect, SAML, Kerberos).
• Experience integrating applications and services into enterprise identity platforms.
• Basic scripting ability (e.g. PowerShell) for automation and operational efficiency.

Desirable

• Experience with SIEM/XDR tools such as Microsoft Sentinel.
• Familiarity with Defender for Cloud Apps and identity-based data protection controls.
• Exposure to cloud identity federation (e.g. SaaS or public cloud integrations).
• Knowledge of frameworks such as ISO 27001, Cyber Essentials Plus, NIST CSF or CIS Controls.
• Awareness of regulatory standards such as PCI DSS.

Qualifications (Preferred)

• Microsoft SC-300 (Identity and Access Administrator) or equivalent.
• Microsoft SC-200 (Security Operations Analyst) (desirable).
• ISC2 certifications (e.g. CC, SSCP, CISSP) or GIAC equivalents.