Security Operations Engineer

Play a key role in protecting and enhancing our global information security environment. We are looking for a proactive and technically skilled professional to help develop, maintain, and improve our security operations capability across both on-premise and cloud platforms.

This is an exciting opportunity to work within a collaborative Information Security team, supporting critical security initiatives while driving automation, resilience, and operational excellence across the business.

As a Security Operations Engineer, you will be responsible for maintaining and improving security operations tools, technologies, and procedures, with a focus on the prevention, detection, analysis, and remediation of technical security risks.

You will contribute to the ongoing development of security operations systems and support the wider Information Security function through technical expertise, automation, and continuous improvement initiatives., * Build, develop, and manage effective security operations systems aligned with Information Security strategy.

• Maintain, support, and enhance existing security operations tools, documentation, and procedures.
• Investigate and resolve security operations incidents in a timely manner.
• Support the Information Security Architecture team on technical security matters.
• Lead the development of Infrastructure as Code (IaC) and DevOps workflows within the Information Security team.
• Manage and troubleshoot on-premise and cloud security services including:
• Firewall rules
• Web Application Firewall (WAF) configurations
• Web proxy settings
• IAM policies
• Security groups
• Support vulnerability management activities, technical audits, and the development of the Internal Control Framework (ICF).
• Promote security awareness and best practices across the wider business.
• Collaborate with internal technical teams to share knowledge and improve security capabilities.
• Work with third-party security providers and project management teams on key initiatives.
• Provide occasional out-of-hours support for critical cyber security incidents or key security system outages.
• Ensure awareness of and compliance with relevant financial crime and conduct regulations.

• Excellent understanding of security technologies and domains, including:
• Endpoint protection
• Vulnerability management
• Attack simulation
• Network and cloud security
• Working knowledge of Privileged Access Management (PAM) principles and technologies.
• Experience using Terraform and Ansible to automate infrastructure deployment tasks.
• Exposure to CI/CD pipelines using GitLab, GitHub Actions, or Jenkins.

Strong knowledge of AWS services including:

• IAM
• VPCs
• EC2
• Lambda
• Security Groups

Strong knowledge of Azure services including:

• Entra ID
• Virtual Machines
• Network Security Groups
• API Management (APIM)
• Experience working with Linux distributions such as Ubuntu, Red Hat, or Rocky Linux.
• Familiarity with cloud platforms including AWS, Azure, and Microsoft 365.
• Scripting experience with Python, Bash, or PowerShell.
• Understanding of AWS and Azure Well-Architected Frameworks.
• AWS Certified Security - Specialty certification (required).