Infrastructure Security Engineer

• Day rate up to £650 a day Inside IR35
• Hybrid working with only 6 Days in office required

The organisation is a public sector.

• Configure and maintain Sentinel analytics rules, workbooks, and connectors
• Develop and optimise dashboards and reports for threat visibility
• Manage Sentinel upgrades and ensure platform stability
• Conduct threat hunting and incident investigations using KQL

• Administer Defender for Endpoint, Identity, Cloud, and Office 365
• Monitor and respond to alerts across Defender platforms
• Collaborate with IT teams to remediate vulnerabilities and improve endpoint security

• Design, build, and deploy automated playbooks using Logic Apps
• Integrate SOAR workflows with Sentinel and Defender alerts
• Continuously improve automation to reduce response times and manual effort

• Analyse security datasets to identify trends and emerging threats
• Produce actionable plans and reports for senior stakeholders
• Drive multiple concurrent initiatives, from tactical fixes to strategic improvements

A successful Infrastructure Security Engineer should have:

• Hands‑on experience with Microsoft Sentinel including configuration, reporting, and upgrades
• Strong understanding of SOAR playbook development and automation
• Ability to manage multiple simultaneous initiatives effectively
• Proficiency in KQL, Azure Logic Apps, and Microsoft Defender suite
• Analytical mindset with experience in data‑driven security planning
• Excellent communication and stakeholder engagement skills

• Competitive daily rate of approximately £550 to £650, based on experience.
• Opportunity to work within a respected public sector organisation.
• Temporary contract offering exposure to impactful projects in the technology department.
• Chance to develop expertise in infrastructure security.