IT Security Engineer
Role details
Job location
Tech stack
Job description
As an IT Security Engineer, you'll be responsible for designing, implementing, and maintaining security controls across our Azure cloud, Microsoft 365, and network infrastructure.
You'll act as a trusted technical expert-responding to security incidents, identifying vulnerabilities, and driving proactive improvements across the organisation., Security Engineering & Architecture
- Support the design and implementation of secure solutions across cloud, network, and endpoint environments
- Strengthen and maintain security controls across Azure and on-premise systems
- Contribute to the ongoing development of security standards and policies
Incident Response & Threat Management
- Investigate and respond to security incidents, driving remediation through to closure
- Perform root cause analysis (RCA) and recommend preventative measures
- Support ongoing security monitoring and threat detection activities
Risk, Audits & Compliance
- Conduct security assessments, audits, and vulnerability reviews
- Ensure compliance with regulatory and industry standards
- Participate in annual penetration testing and security exercises
Collaboration & Advisory
- Work closely with the IT Security & Network Team Lead and wider IT teams
- Provide technical guidance on security best practices across the business
- Produce clear documentation, including incident reports and security guidance
Continuous Improvement
- Stay ahead of emerging cyber threats, tools, and trends
- Identify opportunities to enhance security resilience and automation
Requirements
Essential Experience
- Minimum 5 years' experience in IT Security Engineering or similar role
- Strong knowledge of Microsoft Azure security capabilities, including:
- Azure Security Centre
- Azure Policy
- Entra ID (Azure AD) & identity management
- Key Vault and networking security (NSGs, DDoS, etc.)
- Experience with Microsoft 365 security and Conditional Access policies
- Hands-on experience with endpoint security tools (Microsoft Defender / Defender XDR)
- Strong understanding of network security (firewalls, VPNs, IDS/IPS, segmentation)
- Experience with SIEM tools (preferably Exabeam)
- Scripting/automation skills (PowerShell, KQL, Python or similar)
Desirable
- Security certifications such as CISSP, CISM, CCSP, or AZ-500
- Experience securing hybrid or enterprise Azure environments, * A proactive problem-solver with strong analytical skills
- Detail-oriented with a passion for identifying and mitigating risk
- Confident working independently and managing multiple priorities
- A strong communicator who can explain technical concepts clearly
- A collaborative team player who enjoys sharing knowledge
Benefits & conditions
Flexible Working Primarily remote with occasional travel to Lichfield.
Career Development Opportunities to grow your skills with training and certifications.
Supportive Team Work within a collaborative and forward-thinking IT environment.
Competitive Package Salary and benefits aligned to your experience.