- Company Name
- Manchester United
- Job Title
- Senior Information Security Engineer
- Job Description
-
**Job title:** Senior Information Security Engineer
**Role Summary:**
Lead the design, implementation, and operation of security infrastructure across hybrid on‑premise and cloud environments. Drive threat detection, incident response, and security architecture initiatives while building and maintaining automation and monitoring pipelines.
**Expectations:**
* 5 + years of hands‑on cybersecurity/IT infrastructure experience.
* Proven ability to architect and manage SIEM, endpoint, identity, and network security solutions.
* Strong incident‑response skills with a passion for investigative problem‑solving.
* Self‑driven ownership of engineering projects and continuous learning of emerging threats.
**Key Responsibilities:**
1. **Security Infrastructure & Engineering**
* Architect, deploy, and manage security technologies (SIEM, Microsoft Defender suite, Azure security services, firewalls, IDS/IPS, WAF, VPN, network segmentation).
* Design and enforce endpoint security baselines for Windows, macOS, Linux and mobile.
* Configure Microsoft Intune for device compliance, conditional access, application control, MDM/MAM.
* Build and maintain SOAR playbooks, custom scripts, and integrations; support DevSecOps and container security in CI/CD pipelines.
* Apply hardening standards (CIS, Microsoft baseline) across OS, cloud, and applications.
2. **Threat & Vulnerability Detection & Response**
* Lead incident detection, investigation, and response; conduct root‑cause analysis and post‑incident reviews.
* Implement and tune Microsoft Sentinel—KQL queries, custom rules, threat hunting workbooks, and Logic Apps playbooks.
* Run vulnerability scans, prioritize remediation, evaluate emerging threats and zero‑day vulnerabilities.
3. **Cloud & DevSecOps Security**
* Enforce security controls in CI/CD pipelines (SAST/DAST, container scanning).
* Apply security baselines in Azure/AWS (IAM, key management, encryption, logging).
* Integrate threat intelligence to proactively mitigate risks.
4. **Governance & Collaboration**
* Provide technical guidance on tool selection and new process security.
* Ensure compliance with internal policies and external regulations (ISO 27001, PCI‑DSS, NIST, GDPR).
**Required Skills:**
* Microsoft Sentinel (rule creation, threat hunting, workbooks, automation).
* Microsoft Defender suite (Endpoint, Identity, Cloud).
* Network security fundamentals and zero‑trust architecture.
* Firewalls, IDS/IPS, WAF, VPN, network segmentation.
* Cloud security: Azure Defender CSPM, Azure Sentinel, Azure RBAC/PIM, NSGs, Azure Purview; AWS Security Hub, GuardDuty, CloudWatch (preferred).
* SIEM, SOAR, scripting (PowerShell, Python, Azure Logic Apps).
* DevSecOps, container security, CI/CD pipeline controls.
* Vulnerability management and threat intelligence analysis.
* Frameworks: MITRE ATT&CK, NIST, CIS Benchmarks, PCI‑DSS.
**Required Education & Certifications:**
* Minimum of a bachelor’s degree in Computer Science, Information Security, or equivalent experience.
* Preferred certifications:
* Microsoft Certified: Cybersecurity Architect Expert (SC‑100)
* Microsoft Certified: Security Operations Analyst Associate (SC‑200)
* Microsoft Certified: Azure Security Engineer Associate (AZ‑500)
* CompTIA Security+, CISSP, or other recognized cybersecurity certifications.
Manchester, United kingdom
On site
Senior
25-09-2025