Argus is expanding its Security Operations capability to detect, investigate and respond to threats across its global technology estate. The Security Operations Engineer will be a hands‑on member of the team, working across Cloud, Endpoint and Email Security stacks to improve detection coverage, response capability and operational resilience.
What Will You Be Doing
- Monitor, triage, investigate and respond to security alerts and incidents in Microsoft Sentinel and Defender XDR, including containment, recovery, escalation and post‑incident review.
- Develop, maintain and tune detection analytics, automation playbooks and alerting to reduce false positives, improve coverage and shorten response times.
- Conduct proactive threat hunting using KQL across Microsoft Sentinel and Defender data, mapping suspicious activity to MITRE ATT&CK where appropriate.
- Administer and maintain endpoint, identity and email security controls across Microsoft Defender, Entra ID and email security platforms, including anti‑phishing, DMARC, DKIM and SPF.
- Support vulnerability management by tracking, prioritising and verifying remediation of identified weaknesses.
- Work with infrastructure and development teams to embed security into systems, services and deployments.
- Support compliance and audit activity by maintaining investigation notes, incident records and evidence of security controls.
- Deliver security projects and initiatives aligned with the organization’s security objectives.
Essential Skills and Experience
- At least 3 years’ experience in a security operations, SOC or infrastructure role with security responsibilities.
- Strong operational knowledge of Microsoft Sentinel, Defender XDR, Defender for Endpoint, Defender for Office 365, Defender for Identity, Defender for Cloud Apps and Entra ID.
- Ability to write and interpret KQL for investigation, detection engineering and threat hunting.
- Experience with security controls, threat remediation, root cause analysis, reporting and continuous improvement.
- Working knowledge of areas such as network security, cloud security, vulnerability management, incident response, digital forensics, threat intelligence or common attack techniques.
Desirable
- Experience building security automation with Microsoft Sentinel playbooks, Logic Apps or Power Automate.
- Hands‑on experience with Entra ID Conditional Access, Privileged Identity Management and identity protection.
- AWS security experience, such as GuardDuty, Security Hub or IAM.
- Exposure to Microsoft Purview, including data loss prevention and sensitivity labels.
What’s In It For You
- Competitive salary and company bonus scheme
- Group pension scheme
- Group healthcare and life assurance scheme
- Hybrid working environment (currently one day in office)
- 25 days annual holiday with incremental increase up to 30 days
- Subsidised gym membership
- Season ticket travel loan
- Cycle to work scheme
- Flexible benefits platform (ability to buy additional medical cover, life assurance, dental cover, holiday, critical illness, travel insurance & health screening)
- Extensive internal and external training
Argus is the leading independent provider of market intelligence to the global energy and commodity markets. We offer essential price assessments, news, analytics, consulting services, data science tools and industry conferences to illuminate complex and opaque commodity markets.
Headquartered in London with 1,500 staff, Argus is an independent media organisation with 32 offices in the world’s principal commodity trading hubs.
Companies, trading firms and governments in 160 countries around the world trust Argus data to make decisions, analyse situations, manage risk, facilitate trading and for long‑term planning. Argus prices are used as trusted benchmarks around the world for pricing transportation, commodities and energy.
Founded in 1970, Argus remains a privately held UK‑registered company owned by employee shareholders and global growth equity firm General Atlantic.
#J-18808-Ljbffr…
