Overview

Location: In or Near Old Trafford Stadium

At Manchester United, we believe that excellence on the pitch starts with excellence off the pitch. Our team thrives in a high-performance environment, united by a shared passion for success. We aim to elevate the standard of performance through collaboration and continuous growth, creating a space where everyone can contribute their best to our common goals. We work together at our iconic Manchester United offices, enabling connection and innovation as we look ahead to what we can achieve as a global football club. We are excited to bring in passionate people who share our vision and drive for success.

The Role

We are looking for a highly skilled Senior Information Security Engineer with deep technical expertise in security tooling across both on-premise and cloud environments. You will lead threat detection, incident response, and security architecture efforts within a hybrid environment. This is a highly technical engineering role, where you’ll be hands-on developing and maintaining our security operations tooling.

Responsibilities

• Security Infrastructure & Engineering
• Architect, implement, and manage security technologies including:
• SIEM (Sentinel)
• Microsoft Defender suite (Cloud, Endpoint and Identity), Microsoft Sentinel, Purview and Azure infrastructure (including RBAC, PIM, NSGs and identity protections).
• Firewalls, IDS/IPS, WAF, VPN, and network segmentation solutions
• Cloud-native security controls (Azure Defender CSPM, AWS Security Hub / GuardDuty)
• Design and implement advanced monitoring, logging, and alerting pipelines.
• Design and enforce endpoint security baselines for Windows, macOS, Linux, and mobile devices.
• Configure and manage Microsoft Intune for device compliance policies, Conditional Access enforcement, application control and deployment, and MDM/MAM.
• Build and maintain security automation (SOAR playbooks, custom scripts, integrations).
• Experience with DevSecOps, container security, and CI/CD pipeline integration.
• Implement hardening standards across OS, cloud, and applications (e.g. CIS benchmarks).
• Maintain secure on-premise network architectures including segmentation, access control, and perimeter defence.
• Threat and Vulnerability Detection & Response
• Lead security incident detection, investigation, and response activities alongside the SOC.
• Lead the implementation and tuning of Microsoft Sentinel: build KQL queries, implement custom rules, conduct threat hunting, workbooks, design and automate playbooks using Logic Apps.
• Perform root cause analysis and post-incident reviews to continuously improve our defences.
• Run vulnerability scans, prioritize based on risk, and drive remediation efforts.
• Research and test emerging threats, zero-days, and exploit mitigations.
• Cloud & DevSecOps Security
• Implement security controls in CI/CD pipelines (SAST, DAST, container scanning)
• Enforce security baselines in Azure and/or AWS (IAM, key management, encryption, logging)
• Threat Intelligence - analyse potential threats, identify vulnerabilities, and implement measures to mitigate risks
• Other
• Provide technical expertise to projects and advise on the delivery of new tooling or processes and ensure that new technologies are sufficiently secure and protected
• Collaborate with other teams to ensure compliance with internal security policies and external regulations (e.g., ISO 27001, PCI-DSS, NIST, GDPR)

Skills & Experiences

• Required Experience and Qualities
• 5+ years hands-on experience in cybersecurity roles (ideally with a background in Infrastructure)
• Strong experience with Microsoft Defender suite and Microsoft Sentinel (rule creation, threat hunting, workbooks, automation)
• In-depth knowledge of network security, including zero trust principles and tools such as Netskope
• Familiarity with AWS security stack (GuardDuty, CloudWatch, SecurityHub)
• Knowledge of industry frameworks: MITRE ATT&CK, NIST, CIS Benchmark, PCI-DSS
• Excellent incident responder with a problem-solving mindset
• Strong ownership and ability to drive engineering projects independently
• Continuous learner, up-to-date with latest tools, exploits, and defence strategies
• Able to advise on the delivery of new tooling or processes and ensure security of new technologies

• Preferred Certifications
• Microsoft Certified: Cybersecurity Architect Expert (SC-100)
• Microsoft Certified: Security Operations Analyst Associate (SC-200)
• Microsoft Certified: Azure Security Engineer Associate (AZ-500)
• Cybersecurity certifications such as CompTIA Security+, CISSP

What We Offer

• Annual incentive scheme
• Wellness Support with mental health resources and more
• Exclusive Discounts through United Rewards
• Gym facilities onsite and team-building events
• Enhanced family leave benefits and option to purchase extra holidays
• Enhanced Career Development with access to LinkedIn Learning and internal training
• A supportive work environment that values diversity, equity and inclusion

Our Commitment To You

Manchester United is committed to fostering a diverse and inclusive environment. We welcome applicants from all backgrounds and strive to ensure everyone feels welcomed, valued, and empowered to contribute their unique perspectives.

Ready to Join Us?

If this sounds like the perfect role for you, please submit your application by Friday, 10th October.

Manchester United is committed to safeguarding children and vulnerable adults; all candidates will undergo a Disclosure and Barring Service check and reference checks. If you need any adjustments to help you perform at your best during the recruitment process, please contact us to discuss them. It is unlawful to employ a person in a UK-based job who does not have permission to live and work in the UK.

Seniority level

• Mid-Senior level

Employment type

• Full-time

Job function

• Information Technology

Referrals increase your chances of interviewing at Manchester United by 2x

Get notified about new Senior Information Security Engineer jobs in Manchester, England, United Kingdom.

Manchester Area, United Kingdom 1 day ago

Manchester, England, United Kingdom 1 week ago

Senior Information Security Analyst, SOC (Manchester)

Manchester Area, United Kingdom 7 hours ago

Senior Security Engineer - Cloud, DevSecOps, Trust Engineering

Greater Manchester, England, United Kingdom 2 weeks ago

Information Security Analyst, Vulnerability Management (Manchester)

Manchester Area, United Kingdom 1 week ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.