Overview

SecOps Engineer - Home-based - Gloucester, UK

At EDF, success is personal. Here you’ll develop a career that’s unique to you. Whether you want to move horizontally, deepen your specialty, or advance through the levels — it’s your journey, powered by us.

The Opportunity

The SecOps Engineer will play a key role in designing and configuring protective monitoring capabilities for EDF (UK). Working closely with the SecOps Product Owner and SecOps Architect, you’ll help ensure the reliable operation of EDF’s SIEM and SOC systems - critical components in delivering effective threat detection across the Cyber Defence function.

About The Role

SecOps Engineer

At EDF, success is personal. Here you’ll develop a career that’s unique to you. Whether you want to move horizontally, deepen your specialty, or advance through the levels — it’s your journey, powered by us.

The Opportunity: The SecOps Engineer will play a key role in designing and configuring protective monitoring capabilities for EDF (UK). Working closely with the SecOps Product Owner and SecOps Architect, you’ll help ensure the reliable operation of EDF’s SIEM and SOC systems - critical components in delivering effective threat detection across the Cyber Defence function.

Pay, Benefits And Culture

Alongside a salary of £60,000 (DOE) and a market-leading pension scheme, your package will include a range of benefits, from the big and formal to the small and personal. Benefits include enhanced parental leave, electric vehicle leasing, health insurance, product discounts, critical illness insurance, technology vouchers, gym membership, and season ticket loans.

EDF UK embraces flexibility and supports collaboration, connection, and comfort whether you’re in office, on site, or working remotely. We’re committed to equity, diversity, and inclusion and aim for gender balance and representation across diverse backgrounds. We are a disability confident employer and will help with reasonable adjustments upon request.

We foster a dynamic and inclusive environment where diverse backgrounds drive fresh thinking and innovation. We support you to pursue a career that’s unique to you.

What You’ll Be Doing

• Configure the EDF managed SIEM correctly with appropriate data sources and keep the design collateral up to date.
• Build the SIEM alerting rule set that meets the requirement to alert SOC analysts to events of interest.
• Ensure that the SIEM services operated by our partners are assured and integrate appropriately with EDF systems.
• Work with the Cyber Defence team leads to inform the tactical roadmap of SIEM products and services.
• Work with IT teams to optimise logging from their systems to the SIEM with sufficient event data to support the alerting requirements.
• Align the SIEM use cases to a common framework (e.g. Mitre ATT&CK) to demonstrate coverage to the business.

Who You Are

We’re looking for a proactive and skilled SecOps Engineer who brings both technical expertise and a collaborative mindset. Ideally, you’ll have the following experience and attributes:

• Proven experience in the design, configuration, and use of SIEM and SOAR platforms.
• Strong skills in collecting and analyzing data from multiple logging sources, with the ability to develop effective alerting and query rules.
• Solid understanding of integrating common security technologies (such as EDR, IPS, firewalls, and audit systems) into SOC and SIEM environments.
• Experience deploying cloud platforms using Terraform and working with CI/CD pipelines.
• Ability to communicate clearly with business stakeholders, offering meaningful insights into the configuration, performance, and value of the security monitoring systems.
• Working knowledge of cyber incident response, toolsets, and their capabilities.
• Familiarity with the NIST Cybersecurity Framework, particularly its five core functions: Identify, Protect, Detect, Respond, and Recover.
• Comfortable managing multiple priorities in a fast-paced environment, working with technical and non-technical stakeholders in person and remotely.

Note: It is a requirement of this role that the post-holder currently holds or can obtain and maintain Security Check (SC) clearance.

Closing date for applications: 7th September 2025

Location: Gloucester/London/Hove/Doxford (Hybrid - Flexible)

Success is personal. It's your journey, powered by us. Join us and we'll help Britain achieve Net Zero together.

Seniority level: Mid-Senior level

Employment type: Full-time

Job function: Engineering and Information Technology

Industries: Technology, Information and Internet