Job Opportunity
The role of Security Operations Engineer bridges support and engineering, handling technical issues, guiding junior analysts, and maintaining stable systems in a fast-paced environment.
You'll maintain and support key security platforms, handle triage, tuning, case work, and deeper troubleshooting when tools or integrations behave unexpectedly. You'll partner with engineering, threat and infrastructure teams, unblock junior staff, and improve platform reliability.
* Provide Tier 1/Tier 2 support across logging, endpoint, network and detection tools.
* Troubleshoot cases, document fixes, and handle escalations from junior engineers.
* Validate platform behaviour, data flows, and rule performance.
* Feed recurring issues into automation and process improvements.
* Escalate complex problems to platform owners and track resolution.
* Communicate clearly with internal customers during case handling.
* Participate in on-call rotations to support 24/7 operations.
* Contribute to runbooks, guides and internal knowledge material.
* Identify trends across cases and raise patterns early.
* Support ongoing tuning and optimisation of security tooling.
Requirements
* 4-6 years in SecOps, platform support, or technical troubleshooting.
* Experience with SIEM, EDR, WAF, DNS security, logging pipelines or similar tools.
* Working knowledge of cloud security concepts.
* Solid understanding of networking fundamentals.
* Comfortable analysing logs, events and alerts.
* Experience in enterprise or regulated environments.
* Scripting ability (Python, PowerShell) is a plus.
* Clear communicator with strong customer-handling instincts.
* Experience mentoring junior engineers is an advantage.