Security Engineer

Role: Security Engineer - Vulnerability Management & IAM (Contract) Duration: 6 Months (Initial) Location: Fully Remote Start Date: ASAP Rate: £200 PD Outside IR35

Overview We are seeking a hands-on Security Engineer with strong experience across Vulnerability Management and Identity & Access Management (IAM/PAM) to support a fast-paced security operations environment. This role is focused on execution and delivery, not strategy, ideal for someone who thrives on improving systems, reducing risk, and tackling security challenges head-on. You will play a key role in enhancing security posture, reducing technical debt, and improving operational security processes across infrastructure and cloud environments.

Key Responsibilities

• Improve the quality, coverage, and reliability of vulnerability scans across cloud and on-prem environments

• Analyse and validate vulnerabilities, reducing false positives and prioritising genuine exploitable risks

• Work closely with engineering teams to track and drive remediation activities

• Provide day-to-day operational support across IAM/PAM (CyberArk or similar), including:

• Access requests -

• Issue resolution

• Identity lifecycle management

• Address security backlog and technical debt, driving improvements in overall security hygiene

• Support EDR and Microsoft 365 security monitoring, interpreting alerts and outputs effectively

• Assist during security incidents, providing VM and IAM expertise where required

• Create and maintain clear operational documentation and runbooks

Required Experience

• Proven hands-on experience in Vulnerability Management (Qualys, Rapid7, or similar)
• Strong operational experience with IAM / PAM tools (CyberArk preferred)
• Experience working with EDR solutions (e.g., Defender, CrowdStrike)
• Knowledge of Microsoft 365 security tooling and monitoring
• Experience working in a Security Operations / SecOps environment
• Comfortable working with minimal process and high autonomy

Key Traits

• Pragmatic and delivery-focused mindset
• Comfortable tackling complex, messy environments
• Strong problem-solving skills with a risk-based approach
• Able to work independently and prioritise effectively

Nice to Have

• Experience in cloud environments (Azure preferred)
• Exposure to incident response processes
• Experience improving or maturing security processes

If you thrive in fast-paced environments and enjoy the challenge of identifying and remediating risks, this is an excellent opportunity to take ownership of key security operations and deliver immediate value.