Security Engineer - Enterprise Markets
Hybrid · London, England, United Kingdom or Glasgow, Scotland, United Kingdom
Job Summary
Security Engineer role in an MSSP-style environment focused on vulnerability management and network security for enterprise clients. Responsibilities include end-to-end vulnerability management services (discovery, assessment, remediation tracking), operating vulnerability scanning tools, regular scans and validation, risk-based prioritization, client-facing reporting, and remediation guidance. Contributes to detection engineering and MDR workflows, supports deployment of SIEM/SOC capabilities (Microsoft Sentinel, SIEM/XDR), and aligns vulnerability insights with MDR. Performs network security remediation, supports SASE architectures and Zero Trust initiatives, and collaborates with infrastructure, cloud, and application teams. Engages in pre-sales and governance activities, designs BAS scenarios to validate security controls, and maintains audit evidence and compliance-related deliverables. Requires hands-on experience with vulnerability management tools, strong knowledge of network security principles, ability to communicate risk to clients, and willingness to work in a hybrid model with onsite presence in multiple UK locations. Nice-to-haves include relevant certifications (CCNA, Security+, CEH, CISSP), IAM familiarity, and experience in MSSP environments.
Required Qualifications
- Strong experience delivering vulnerability management services (ideally within a managed service or consultancy)
- Hands-on experience with vulnerability tooling (e.g., Qualys, Nessus, Rapid7)
- Experience with Tufin (SecureTrack/SecureChange) or similar (e.g., Palo Alto Panorama, Cisco Defense Orchestrator)
- Solid knowledge of network security (firewalls, VPNs, segmentation, protocols)
- Ability to translate technical vulnerabilities into business risk and remediation actions
- Strong analytical, troubleshooting, and communication skills
- Experience with Microsoft Sentinel and SIEM/XDR platforms
- Experience with BAS (Breach & Attack Simulation)
- Experience with SASE, Zero Trust, MDR/XDR
- Onboarding and integrating telemetry across network, endpoint, cloud, and identity sources
- Pre-sales and client engagement experience
- Governance, reporting, and documentation
- Experience in MSSP or multi-client environments
- Certifications such as CCNA/Security+/CEH/CISSP are a plus
- Familiarity with ISO 27001, NIST, CIS, PCI-DSS would be beneficial
- Experience with ITIL service delivery
- Experience with RSA or IAM solutions
Additional Requirements
- Cannot offer visa sponsorship or relocation support
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.