This list contains only the countries for which job offers have been published in the selected language (e.g., in the French version, only job offers written in French are displayed, and in the English version, only those in English).
As a Security Delivery Engineer, you’ll be responsible for delivering, onboarding, and continuously improving security services across live customer environments. You’ll take ownership of engineering activity throughout the full service lifecycle, from customer onboarding and transition through to BAU improvement, service optimisation, and engineering-led escalations. This is a hands-on role where you’ll help ensure security platforms are implemented correctly, maintained to a high standard, and continually improved through continuous improvement activity. You’ll also support clean, effective handovers into SOC operations where required. Acting as the link between delivery, engineering, and live SOC operations, you’ll help make sure our security services are stable, scalable, and operationally effective for our customers.
Job Responsibility
Deliver core Security Engineering across live environments, ensuring security, stability, and performance
Maintain and optimise detections, alerts, enrichment, and automation across SIEM, EDR/XDR, and cloud platforms
Review vulnerabilities and security posture, providing prioritised remediation guidance
Support SOC investigations with engineering expertise
Create and maintain documentation, standards, and runbooks
Lead engineering for onboarding, transitions, and service changes, ensuring consistent, secure delivery
Deploy and configure SIEM, EDR/XDR, cloud security, logging, and integrations to agreed designs
Tune detections, alerts, and automation to ensure production readiness
Implement SOAR playbooks and automation for SOC operations
Act as escalation point for complex or recurring service issues
Investigate root causes of incidents, instability, and detection failures, implementing fixes
Partner with SOC and Engineering Leads to reduce repeat escalations
Drive continuous improvements across live environments, onboarding, and platforms
Identify enhancements to detection quality, automation, efficiency, and resilience
Embed lessons learned into standards, templates, and service patterns
Support the maturity and scalability of ANS security services
Ensure structured handover to SOC, including docs, detections, runbooks, and escalation paths
Validate monitoring, alerting, and response meet service levels pre-BAU
Provide early-life support post-onboarding or major changes
Engage customers during onboarding, changes, and escalations with clear technical guidance
Collaborate with Architects, Engineering Leads, and Customer Success to align delivery
Support sales opportunities
Requirements
Strong experience with Linux, Windows, and virtualised environments
Hands-on experience with Azure, Microsoft 365, and AWS security
Practical experience operating and improving SIEM and XDR platforms (e.g. Microsoft Sentinel, Defender, Carbon Black)
Scripting and automation skills (PowerShell, Python, Bash)
Strong understanding of incident response, alerting, logging, and engineering escalation workflows
Ability to balance BAU engineering, delivery work, and CI improvement
Network Defence
NIST CVSS Vulnerabilities and scoring system
OS Specific log data
IPTables
Knowledge of secure development principles and OWASP top 10
Clear and concise communication skills
Strong emotional intelligence
Willingness to develop with continual learning
Logical problem-solving abilities
Accuracy and attention to detail
Good time management skills
Skilled in discussing complex security issues in understandable business terms
Proactive approach and work ethic
Customer facing skills
Candidate must be capable of achieving HMG Security Clearance
What we offer
25 days' holiday, plus you can buy up to 5 more days
your birthday off
an extra celebration day
5 days' additional holiday in the year you get married