Overview
SecOps Engineer – Gloucester, UK
SecOps Engineer
At EDF, success is personal. Here you’ll develop a career that’s unique to you. Whether you want to move horizontally, deepen your specialty, or advance through the levels — it’s your journey, powered by us.
The Opportunity
The SecOps Engineer will play a key role in designing and configuring protective monitoring capabilities for EDF (UK). Working closely with the SecOps Product Owner and SecOps Architect, you’ll help ensure the reliable operation of EDF’s SIEM and SOC systems – critical components in delivering effective threat detection across the Cyber Defence function.
Pay, benefits and culture
Alongside a salary of £60,000 (DOE) and a market-leading pension scheme, your package will include a range of benefits, from the big and formal to the small and personal.
We’re talking about everything from enhanced parental leave to electric vehicle leasing, health insurance to product discounts, critical illness insurance to technology vouchers, gym membership to season ticket loans.
At EDF UK, we embrace flexibility while recognising that everyone’s working needs are different. Whether you’re in our office spaces, on site, or working remotely, we promote an environment that supports collaboration, connection, and comfort. No matter where you are, our priority is to make sure you feel safe, valued, and celebrated.
Here, we do right by each other and everyone’s welcome. We’re on an action-oriented journey, championing equity, diversity, and inclusion. We’d like our future workforce to have an equal gender balance, represent a broad mix of people from minority ethnic backgrounds, LGBTQ+, those with a disability and supporting social mobility.
We’re a disability confident employer and we’ll do all we can to help with your application. Please let us know if you need to request reasonable adjustments.
We take pride in fostering a dynamic and inclusive environment, where the diverse backgrounds and experiences of our employees drive fresh thinking and innovation. We understand that success means different things to different people. We believe there are multiple definitions of what it means to succeed. That’s why we support you to pursue a career that’s unique to you. Because success is personal.
What you’ll be doing
- Configure the EDF managed SIEM correctly with appropriate data sources and keep the design collateral up to date.
- Build the SIEM alerting rule set that meets the requirement to alert SOC analysts to events of interest
- Ensure that the SIEM services operated by our partners are assured and integrate appropriately with EDF systems
- Work with the Cyber Defence team leads to inform the tactical roadmap of SIEM products and services
- Work with IT teams to optimise logging from their systems to the SIEM with sufficient event data to support the alerting requirements.
- Align the SIEM use cases to a common framework (e.g. Mitre ATT&CK) to demonstrate coverage to the business.
Who you are
We’re looking for a proactive and skilled SecOps Engineer who brings both technical expertise and a collaborative mindset to our team. Ideally, you’ll have the following experience and attributes:
- Proven experience in the design, configuration, and use of SIEM and SOAR platforms.
- Strong skills in collecting and analyzing data from multiple logging sources, with the ability to develop effective alerting and query rules.
- Solid understanding of integrating common security technologies (such as EDR, IPS, firewalls, and audit systems) into SOC and SIEM environments.
- Experience deploying cloud platforms using Terraform and working with CI/CD pipelines.
- Ability to communicate clearly with business stakeholders, offering meaningful insights into the configuration, performance, and value of the security monitoring systems.
- A working knowledge of cyber incident response, associated toolsets, and their capabilities.
- Familiarity with the NIST Cybersecurity Framework, particularly its five core functions: Identify, Protect, Detect, Respond, and Recover.
- Comfortable managing multiple priorities in a fast-paced environment, working effectively with both technical and non-technical stakeholders in person and remotely.
Please note, it is a requirement of this role that the post-holder either currently holds or can obtain and maintain Security Check (SC) clearance.
If this sounds like you, then we’d love to hear from you!
Closing date for applications: 7th September 2025
Location: Gloucester/London/Hove/Doxford (Hybrid – Flexible)
Success is personal. It’s your journey, powered by us. Join us and we’ll help Britain achieve Net Zero together.
