Back to jobs
Argus Media

Security Operations Engineer

London, United KingdomPosted 2 days ago
hybrid

Job Description

Argus is expanding its Security Operations capability to detect, investigate and respond to threats across its global technology estate. The Security Operations Engineer will be a hands-on member of the team, working across Cloud, Endpoint and Email Security stacks to improve detection coverage, response capability and operational resilience.

What will you be doing

  • Monitor, triage, investigate and respond to security alerts and incidents in Microsoft Sentinel and Defender XDR, including containment, recovery, escalation and post-incident review.

  • Develop, maintain and tune detection analytics, automation playbooks and alerting to reduce false positives, improve coverage and shorten response times.

  • Conduct proactive threat hunting using KQL across Microsoft Sentinel and Defender data, mapping suspicious activity to MITRE ATT&CK where appropriate.

  • Administer and maintain endpoint, identity and email security controls across Microsoft Defender, Entra ID and email security platforms, including anti-phishing, DMARC, DKIM and SPF.

  • Support vulnerability management by tracking, prioritising and verifying remediation of identified weaknesses.

  • Work with infrastructure and development teams to embed security into systems, services and deployments.

  • Support compliance and audit activity by maintaining investigation notes, incident records and evidence of security controls.

  • Deliver security projects and initiatives aligned with the organisation’s security objectives.

Skills and Experience

Essential

  • At least 3 years’ experience in a security operations, SOC or infrastructure role with security responsibilities.

  • Strong operational knowledge of Microsoft Sentinel, Defender XDR, Defender for Endpoint, Defender for Office 365, Defender for Identity, Defender for Cloud Apps and Entra ID.

  • Ability to write and interpret KQL for investigation, detection engineering and threat hunting.

  • Experience with security controls, threat remediation, root cause analysis, reporting and continuous improvement.

  • Working knowledge of areas such as network security, cloud security, vulnerability management, incident response, digital forensics, threat intelligence or common attack techniques.

Desirable

  • Experience building security automation with Microsoft Sentinel playbooks, Logic Apps or Power Automate.

  • Hands-on experience with Entra ID Conditional Access, Privileged Identity Management and identity protection.

  • AWS security experience, such as GuardDuty, Security Hub or IAM.

  • Exposure to Microsoft Purview, including data loss prevention and sensitivity labels.

What’s in it for you

Our rapidly growing, award-winning business offers a dynamic environment for talented, entrepreneurial professionals to achieve results and grow their careers. Argus recognizes and rewards successful performance and as an Investor in People, we promote professional development and retain a high-performing team committed to building our success.

  • Competitive salary and company bonus scheme

  • Group pension scheme

  • Group healthcare and life assurance scheme

  • Hybrid working environment (currently one day in office)

  • 25 days annual holiday with incremental increase up to 30 days

  • Subsidised gym membership

  • Season ticket travel loan

  • Cycle to work scheme

  • Flexible benefits platform (ability to buy additional medical cover, life assurance, dental cover, holiday, critical illness, travel insurance & health screening)

  • Extensive internal and external training

Security Operations Engineer at Argus Media | Renata