Senior Security Engineer(UK region)

Job Overview

The Senior Security Engineer is responsible for protecting the organisation's digital assets, infrastructure, and data through the design, implementation, and maintenance of security systems and controls. This role involves managing security tools, conducting risk assessments, responding to incidents, and ensuring adherence to applicable security standards and frameworks. The successful candidate will work closely with teams across Menlo to embed security best practices across all technology initiatives, supporting the organisation's security posture and resilience.

Key Responsibilities

• Security Operations & Monitoring
  • Monitor and manage the SIEM platform and security alerts to identify, investigate, and respond to potential threats.
  • Administer and optimise EDR solutions (Crowdstrike) to ensure comprehensive endpoint protection across the organisation.
  • Lead incident response activities, including investigation, containment, remediation, and post-incident analysis.
• Vulnerability & Risk Management
  • Manage the vulnerability management programme, including scanning, prioritisation, and coordination of remediation efforts.
  • Conduct risk assessments and develop risk mitigation strategies in collaboration with stakeholders.
  • Implement and maintain CIS Benchmarks and similar baselines across systems and infrastructure to ensure secure configurations.
• Identity, Access & SaaS Security
  • Configure and manage identity and access management (IAM) solutions, ensuring appropriate access controls are in place.
  • Oversee SaaS security posture, including configuration reviews, access governance, and data protection controls.
  • Manage data loss prevention technologies (Code42, Google Workspace) to protect sensitive information and ensure compliance with data handling policies.
• Security Engineering & Automation
  • Develop and implement automation to improve security operations efficiency and reduce manual workload.
  • Support network security initiatives, ensuring secure architecture and appropriate controls are maintained.
  • Evaluate and contribute to AI security initiatives, ensuring appropriate controls for AI/MCP systems and emerging technologies.
• Policy, Process & Advisory
  • Develop, document, and maintain security policies, standards, and procedures.
  • Provide security guidance and consultancy to IT and other Menlo teams on projects and initiatives.
  • Stay current with emerging threats, vulnerabilities, and security technologies to continuously improve the organisation's security posture.

Qualifications

• Bachelor's degree in Cybersecurity, Computer Science, or Information Technology,
• Relevant certifications (CISSP, CCSP, Security+, or similar), and/or
• Minimum of 3-5 years' experience in security engineering or adjacent roles.
• Hands-on experience with SIEM platforms, EDR solutions (ideally Crowdstrike), and vulnerability management tools.
• Experience with IAM solutions, SaaS security, and data protection tools.
• Strong understanding of networking concepts, protocols, and security architecture.
• Experience with security automation and scripting required.
• Strong understanding of cloud security concepts is beneficial.
• Excellent analytical, problem-solving, and communication skills.

Working Conditions

• Full-time position with occasional out-of-hours support coverage as required.
• Hybrid working arrangement with in-office presence required 1-2 days per week.