1 week ago Be among the first 25 applicants

Get AI-powered advice on this job and more exclusive features.

This range is provided by Xpertise Recruitment. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.

Base pay range

70k

Job details

Principal SecOps Engineer — Nottingham (1 day per week in the office) • On call 1 week in 6

Responsibilities

• Act as a primary point of contact for security incidents, leading investigations, and ensuring effective resolution
• Design, implement, and manage security measures for our applications and infrastructure to protect against security breaches
• Develop a rigorous incident response plan and lead post-incident reviews to improve our security posture
• Collaborate closely with development and infrastructure teams to integrate security practices into the DevOps pipeline
• Oversee the deployment and management of security monitoring tools to ensure real-time visibility and response capabilities
• Conduct threat assessments and vulnerability assessments, and implement appropriate mitigation strategies
• Upskill and mentor the security team on best practices, emerging threats, and innovative security solutions
• Stay current on the latest cybersecurity trends, technologies, and threats, and proactively recommend enhancements to our security programs
• Implementing proven security testing frameworks into high throughput environments
• Infrastructure security best practices within IaC, ideally Terraform
• Experience with external security audits and certification procedures
• Experience with implementing tooling and static code analysis to detect and flag vulnerabilities as part of our CI process
• Experienced using GitHub with a firm understanding of various branching/merging strategies

Key Qualifications

• Extensive experience in security operations roles, preferably in cloud and on-premise environments
• Proficiency in security monitoring tools (such as SIEM, IDS/IPS) and incident response processes
• Strong knowledge of security frameworks, standards, and best practices (e.g., NIST, ISO 27001, CIS)
• Experience with scripting and automation tools for enhancing security processes
• Excellent communication skills and ability to articulate complex security concepts to various stakeholders
• Strong analytical and problem-solving skills with a focus on continuous improvement

Seniority level

• Mid-Senior level

Employment type

• Full-time

Job function

• Information Technology

Industries

• IT System Operations and Maintenance
• IT Services and IT Consulting
• IT System Design Services

Nottingham, England, United Kingdom