Would you like to kick start your career in a supportive, collaborative and innovative company?

Do you enjoy working as part of an enthusiastic, passionate, and collaborative team? 

Join our Cyber Operations Teams!

The Softcat Cyber Operations teams provides our customers with cyber security monitoring, analysis, assessment and remediation. It is our job to design and deploy effective security monitoring and assessment tools into customer IT systems to provide monitoring and detection capabilities against cyber threats. Our Engineering team is responsible for ensuring these tools are properly configured, deployed and maintained to deliver the service effectively. 

Success. The Softcat Way. 

Passion. Intelligence. Fun. Responsible; these are the core values which define Softcat. We are one of the UK's leading IT infrastructure providers and a FTSE 250 listed company. The business is based on two key principles: outstanding customer service and employee satisfaction- both of which inspire our flexible, friendly approach to business. For more information about Softcat please visit: www.softcat.com.  
 

Working as part of our Cyber Operations team, you'll be working as a key member of the Engineering team who are responsible for delivering the engineering strategy defined by the Cyber Operations Manager. This will include ensuring best practice is applied to Engineering activities, the continual development of platforms and services, and maintaining high standards across the function. 

As the Senior Engineer, you'll be responsible for: 

• Work with customers and internal stakeholders to identify development and improvement opportunities and continually evaluate our cyber practices and capabilities, to increase effectiveness and timeliness of the service 

• Provide On call support alongside other Senior team members, as part of a continuous On-call rota 

• Work as a Senior member of Engineering, designing and developing security tooling, automation, best practice and efficiency across the platforms in use and surrounding technical practices 

• Deliver end‑to‑end SIEM/Sentinel engineering by onboarding customers, configuring data connectors, integrations, KQL, automation, dashboards and reporting. 

• Drive continual tuning, enrichment and optimisation across Sentinel and align with other SIEM tools. 

We'd love you to have:

• Knowledge and understanding of incident Response frameworks such as NIST CSF, SOC2 or equivalent 

• Knowledge and understanding of information security architecture and IT security policies relevant to logging (secure transport, retention, privacy by design).  

• Organised, with strong communication skills both written and oral, and with the ability to translate and deliver technical information (standards, runbooks, feed specs) to a non-technical audience 

• Customer focused and proactive in resolving technical issues and challenges 

• Prior experience working within a Managed Service Provider or MSSP organisation is strongly preferred. Candidates who have performed a similar role but not necessarily in a SOC will be considered 

• Experience with other SIEM and related information security management platforms desirable, such as AlienVault, Elastic, EDR/MDR tools, vulnerability management platforms etc  

• Demonstrable knowledge of SIEM data modelling, event normalization, and enrichment strategies.  

• Ability to perform requirements analysis and use‑case modelling to define logging/integration needs for new and evolving services.  

• Strong experience working with KQL, ADX, data connectors, GitHub and other components of MS Sentinel 

We also acknowledge that the confidence gap and imposter syndrome are a real thing and can get in the way of us meeting fantastic talent, so please don't hesitate to apply – we would love to hear from you!

Work in a way that works for you  

We recognise that everyone is different and that the way in which people want to work and deliver at their best is different for everyone too. In this role, we can offer the following flexible working patterns:  

• Hybrid working – 2 days in the office and 3 days working from home  
• Working flexible hours - flexing the times you start and finish during the day  
• Flexibility around school pick up and drop offs 

Working with us  

Wherever you work, we want you to experience the freedom and autonomy to realise your potential. You will feel supported by a team that celebrates individuality, encourages different perspectives, and embraces every background.  

Join us  

To become part of the success story, please apply now.

If you have a disability or neurodiversity, we can provide support or adjustments that you may need throughout our recruitment process or any mitigating circumstance you wish for us to consider. Any information you share on your application will be treated in confidence.  You can find out more about life at Softcat and our commitments to diversity and inclusion at jobs.softcat.com/jobs/our-culture/ 

Here at Softcat, we don't prohibit the use of AI (artificial intelligence) in our application process, as we understand how far it can go to creating a truly equitable candidate experience. That being said, as a culture-driven organisation, we believe that the genuine essence of each person is what truly matters, so we highly encourage you to be as authentically you as possible when submitting your application to showcase your true and whole self.