Cyber SecOps Engineer

Company Description

At Quorum Cyber, we're on a mission to help good people win. Founded in Edinburgh in 2016, we're one of the fastest growing cyber security companies in the UK and North America, serving over 400 customers on four continents.

We protect organisations against the rising threat of cyber-attacks, enabling them to thrive in an increasingly unpredictable and inhospitable digital landscape.

As a Microsoft-only security house, a Microsoft Solutions Partner for Security, a member of the Microsoft Intelligent Security Association (MISA), and winner of the Microsoft Security MSSP of the Year 2025 award, we offer a unified security ecosystem comprised of innovative services, all delivered through our customer platform, Clarity.

In September 2024, Quorum Cyber acquired Canada-based, Microsoft Solutions Partner for Security, Difenda. This was closely followed in December 2024 by the acquisition of US-based, Kivu Consulting, a global cyber security firm with world-leading incident response capabilities.

The Cyber Sec Op Engineer role is responsible for executing and supporting cybersecurity maturity improvement initiatives while maintaining operational security capabilities. This role combines hands‑on implementation of security frameworks and process improvements with day‑to‑day security operations management. The role requires someone who can work independently on security projects, lead specific work streams within larger maturity initiatives, and provide technical expertise to support organisational security enhancement efforts.

This position bridges tactical security operations with strategic security improvement, making it ideal for cybersecurity professionals ready to take on greater responsibility in driving security maturity forward.

• Execute specific components of cybersecurity maturity assessment projects using established frameworks (NIST CSF, ISO 27001, CIS Controls)
• Lead gap analysis efforts for assigned security domains and develop detailed remediation plans
• Implement security controls and process improvements based on maturity roadmaps and senior guidance
• Conduct benchmarking research and analysis to compare organisational security posture against industry standards
• Maintain and update security metrics dashboards and reporting mechanisms to track maturity progression

• Implement security policies, procedures, and standards following organisational templates and requirements
• Lead the development of security playbooks, runbooks, and standard operating procedures for specific domains
• Coordinate security compliance activities including evidence collection, control testing, and audit support
• Design and deliver security awareness training sessions and educational materials
• Manage security documentation repositories and ensure accuracy and currency of security guidance

• Independently manage security monitoring activities including SIEM analysis, alert triage, and incident escalation
• Perform advanced threat hunting and security analysis to identify potential security incidents
• Lead incident response activities for moderate complexity security events
• Optimise security tool configurations, rules, and automated workflows to improve detection capabilities
• Coordinate vulnerability management activities including scanning, analysis, and remediation tracking

• Identify security process inefficiencies and develop improvement recommendations with implementation plans
• Implement automation solutions for routine security tasks using SOAR platforms and scripting
• Lead security tool integration projects to improve operational efficiency and data correlation
• Conduct security process assessments and develop standardised workflows for security operations
• Support security technology evaluations and proof‑of‑concept implementations

• Lead initial triage and investigation of security incidents, determining scope, impact, and appropriate response measures
• Coordinate incident response activities with internal teams, management,…