About the role

Senior Security Engineer developing a security control embedded in product squads at Our Future Health. Focus on hands-on coding and broader security engineering across the organization.

Responsibilities

Developing our TRE airlock as part of a squad, specifically the ‘airlock checks engine’ and the security checks that will run within this.
Supporting our product managers with shaping our airlock roadmap, ensuring security items are included alongside non-security features.
Contributing to developing our airlock policy specifying how to handle the findings from airlock checks.
Leveraging in-house knowledge to enrich and enhance our SOC capabilities.
Overseeing and supporting the operation of our various security tools, including Microsoft Defender and Microsoft Purview suites and Entra ID (previously AAD) for IAM, Identity Governance and Privileged Identity Management.
Providing guidance and a level of oversight for vulnerability management and triage work.
Documenting security processes and security tool low-level design/configuration.
Contributing to the development of security service delivery and operation documentation.
Assisting tech teams with integrating their systems and services with security services and tools.
Supporting the cloud security and application security engineers and wider security team with their various responsibilities, including achieving and maintaining ISO 27001 certification and threat modelling activities.

Proficiency in writing Python and ideally KQL.
Comfortable working with Infrastructure as Code, ideally with knowledge of Terraform.
Significant experience developing Python scripts/systems
Experience working directly with software engineering best practices: source control, unit testing, code reviews, design documentation, excellent debugging, troubleshooting skills.
Experience with Azure (ideally), AWS or GCP, Docker, Kubernetes, and Helm.
Experience of operationally managing software components once live, including; observability, logging, metrics, error reporting, debugging and live incident management.
Experience with Microsoft Sentinel, Microsoft’s Defender and Purview suites and Microsoft Entra.
Experience of SOAR tooling and automating security capabilities and operations.
Experience in Threat Modelling.
Ability to communicate with stakeholders and audiences outside your own team.
Exposure to Agile working.
Experience working in/with cross-functional teams consisting of engineers, product, UX and non-technical stakeholders.
Desire to be part of a small fast-paced security team.
Relevant certifications, such as: Microsoft certifications (MS-500, AZ-500, SC-200, SC-300, SC-400), CompTIA Security+, GIAC Security Operations Certified (GSOC), Cloud Security Alliance CCSK.

Salary from £75,000 per annum.
Generous Pension Scheme – We invest in your future with employer contributions of up to 12%.
30 Days Holiday + Bank Holidays – Enjoy a generous holiday allowance with the flexibility to take bank holidays when it suits you.
Enhanced Parental Leave – Supporting you during life’s biggest moments.
Cycle to Work Scheme – Save 25-39% on a new bike and accessories through salary sacrifice.
Home & Tech Savings – Get up to 8% off on IKEA and Currys products, spreading the cost over 12 months through salary sacrifice
£1,000 Employee Referral Bonus – Know someone amazing? Get rewarded for bringing them on board!
Wellbeing Support – Access to Mental Health First Aiders, plus 24/7 online GP services and an Employee Assistance Programme for you and your family.
A Great Place to Work – We have a lovely Central London office in Holborn, and offer flexible and remote working arrangements.