Overview

Senior Security Operations Engineer — We’re working with a leading international technology business that delivers innovative communication solutions to over 60,000 organisations worldwide. This role is based in Nottingham and focuses on ownership of security operations and embedding DevSecOps practices into the engineering culture.

This is a pivotal hire where you’ll not only take ownership of security operations but also play a key role in embedding DevSecOps practices into their engineering culture. If you’re passionate about building secure systems at scale, thrive in fast-moving environments, and want to influence how security is approached in modern cloud-first environments, this could be the role for you.

What you’ll be doing

• Acting as a key point of contact for security incidents – leading investigations, containment, and resolution.
• Designing, implementing, and managing security measures across applications and infrastructure to protect against evolving threats.
• Embedding DevSecOps best practices into CI/CD pipelines – ensuring security is automated, consistent, and scalable.
• Working closely with development and infrastructure teams to shift security left and ensure security by design.
• Deploying and managing security monitoring, detection, and alerting tools (SIEM, IDS/IPS, endpoint protection, etc.) for real-time visibility.
• Running threat modelling, vulnerability assessments, and penetration testing, then leading on remediation.
• Championing Infrastructure as Code (IaC) security – ensuring cloud-native deployments (ideally with Terraform) follow security best practice.
• Leading post-incident reviews, knowledge sharing, and mentoring to strengthen the team’s overall security maturity.
• Staying ahead of emerging threats, technologies, and frameworks to continually improve security operations.

What we’re looking for

• Proven experience in security operations engineering, ideally spanning both cloud and on-prem environments.
• Strong background in DevSecOps – implementing security tooling into CI/CD workflows, static code analysis, and automated vulnerability detection.
• Proficiency with security monitoring tools and incident response processes.
• Hands-on experience with scripting and automation to enhance and scale security processes.
• Familiarity with security frameworks and standards (NIST, ISO 27001, CIS, etc.).
• Experience of infrastructure security and IaC (Terraform experience is a plus).
• Excellent communication skills – able to articulate security concepts to technical and non-technical stakeholders.

What’s on offer

• Company bonus scheme
• Comprehensive healthcare cash plan
• 27 days annual leave + Bank Holidays
• Your birthday off!
• Death in service (4x salary)

This is a fantastic opportunity for an experienced security professional who wants to make a tangible impact and shape the way security is delivered in a forward-thinking technology business.

If you’re ready to take the next step in your security career and help embed DevSecOps at scale, we’d love to hear from you.

Seniority level

• Mid-Senior level

Employment type

• Full-time

Job function

• Information Technology

Industries

• IT Services and IT Consulting, Software Development, and Computer and Network Security