Requirements:

Bachelor's degree in Computer Science, Information Security, a related field, or equivalent practical experience.
5 years of experience in security engineering, DevSecOps, or platform engineering roles.
Experience with technical troubleshooting and scripting languages such as Python, Go, or Bash.
Experience with Kubernetes security, including workload isolation, RBAC, and network policies, containerisation, orchestration, and Kubernetes observability tools (e.g., Falco, Prometheus, Grafana).
Experience with infrastructure-as-code and configuration management tools (e.g., Terraform, Helm, ArgoCD).
United Kingdom Security Vetting Developed Vetting (DV) clearance.

Preferred qualifications:

Certifications in Security (e.g., GSEC, CISSP, CISM, OSCP).
Experience with Kubernetes threat detection and anomaly detection.
Experience with service mesh security concepts (e.g., Istio, Linkerd) and workload identity.
Experience in detection engineering, logging pipeline development, or SIEM tuning in containerised environments.
Experience in contributing to security-focused open-source projects or internal security platform tooling.

Deploy, configure, and manage cloud security platform tools and technologies, including Security Information and Event Management (SIEM), Intrusion Detection/Prevention Systems (IDS/IPS), and Cloud Workload Protection Platforms (CWPP).
Develop and implement security monitoring and logging strategies.
Investigate and analyse security incidents, including identifying root causes, determining the scope of impact, and taking appropriate containment and remediation actions.
Perform forensic analysis to identify and investigate suspicious activity.
Automate security tasks and workflows to improve efficiency and effectiveness.

Participation in a rotating on-call schedule outside of core business hours and over the weekend.
Opportunity to work with Incident Response Engineers and platform teams.
Contribution to security-focused open-source projects or internal security platform tooling.