Overview

Join to apply for the Security Operations Engineer role at CRU.

CRU International is a leading provider of business intelligence and consulting services in the metals, mining, and fertilizer industries. With over 50 years of experience, we offer valuable insights and analysis that help our clients make informed decisions in an ever-changing global market.

About the role:

We are seeking a Security Operations Engineer to safeguard CRU’s systems, networks, and data through proactive monitoring, incident response, and continuous technical security improvements. You will manage security tooling, enhance detection capabilities, lead investigations, and collaborate across IT, DevOps, and governance to strengthen our security posture.

Key Responsibilities

• Manage, maintain, and tune security tools (EDR, SIEM, vulnerability management, firewall, email security).
• Monitor and triage alerts and logs; identify and respond to suspicious activity or threats.
• Lead or support security incident investigations; develop and test incident response playbooks.
• Implement logging and monitoring improvements in partnership with IT.
• Run regular vulnerability scans, track remediation, and assist with patching.
• Collaborate with development teams to review CRU’s custom applications and advise on application security best practices.
• Arrange regular penetration tests for custom applications.
• Implement system hardening, secure configurations, and security best practices.
• Perform threat modeling and support secure software development where applicable.
• Partner with IT and DevOps to ensure secure infrastructure.
• Provide technical input for governance activities, risk assessments, and audits.

Preferred Certifications

• CompTIA Security+
• Microsoft SC-200 (Security Operations Analyst Associate)
• GIAC Security Essentials (GSEC)
• Certified SOC Analyst (CSA)
• CompTIA CySA+ (Cybersecurity Analyst)
• Or equivalent practical experience

Skills & Experience

• Hands-on experience with endpoint protection platforms (e.g., Microsoft Defender for Endpoint, CrowdStrike, SentinelOne).
• Proficiency with SIEM tools (e.g., Microsoft Sentinel, Splunk, LogRhythm).
• Experience with vulnerability management tools (e.g., Qualys, Tenable, Wiz, Arctic Wolf).
• Strong knowledge of network and system security fundamentals.
• Solid understanding of Windows and Linux operating systems.
• Familiarity with identity and access management (IAM) principles.
• Proven ability to develop and maintain security policies, standards, and procedures.
• Experience conducting risk assessments, managing risk registers, and supporting risk treatment plans.
• Ability to assess and prioritize security events and respond effectively under pressure.
• Strong problem-solving and analytical skills.
• Clear written and verbal communication skills; effective collaboration with IT and security teams.
• Experience working in or with a SOC environment.
• Ability to write or use basic scripts (e.g., PowerShell, Bash, Python).

What We Offer

• Competitive salary and flexible benefits package.
• Opportunities for professional growth and development as part of a global company.
• A collaborative and supportive work environment.
• The chance to work with industry-leading experts and over a diverse range of topics and projects.

Location & Employment Details

• London, England, United Kingdom
• Employment type: Full-time
• Seniority level: Mid-Senior level
• Job function: Information Technology
• Industries: Business Consulting and Services

Note: This listing excludes irrelevant boilerplate and site-specific notices.