We are Kocho
Kocho recognise that technology on its own does not deliver change and offers technology adoption services alongside excellent technical consulting to enable our clients to achieve their business goals on their journey to Become Greater.
Our head office is in the heart of London’s West End and provides a comfortable working environment with flexible collaboration spaces that encourage our people to Become Greater with the aim to Do What’s Right.
In 2022 we opened new offices in Cardiff and Cape Town which follow the style of our London space.
Kocho is an equal opportunities employer. We make recruitment decisions based on qualifications, skill set and experiences. We consider all suitable candidates regardless of their age, sex, gender reassignment, race, religious beliefs, or lack thereof, marital status, disability or sexual orientation or any other protected characteristic.
This is mindset aligns with our company values as we understand that we are Better Together.
Here is the role:
We are actively seeking a Security Operations Solutions Engineer who combines strong technical acumen with operational expertise to design and implement robust security solutions. The ideal candidate will play a key role in operationalising security measures, focusing on Microsoft Security stack – Sentinel and Defender – with an excellent level of ability in all things Azure. Working knowledge of AWS, GCP, Linux, and firewalls would be advantageous. This position requires a candidate who is adept at translating security requirements into practical operational solutions, collaborating closely with clients and cross-functional teams. The responsibilities include:
Operational Security Design:
* Lead the operational design and implementation of robust security architectures, with a focus on the Microsoft Security stack, including Defender and Sentinel, as well as Azure and other cloud environments.
* Translate security requirements into practical and effective operational solutions.
Technical Leadership and expertise:
* Provide technical leadership in operationalising security measures, ensuring the effective implementation of security solutions for existing and new clients as well as Kocho.
* Collaborate with clients, 3rd parties and internal teams to integrate security seamlessly into day-to-day operations.
Training and Knowledge Transfer:
* Develop and deliver training programs to enhance the skills of the SecOps team in implementing and maintaining security solutions.
* Facilitate knowledge transfer to empower SecOps staff and others to handle security incidents effectively
Cross-Functional Collaboration:
* Collaborate with cross-functional teams, including analysts, engineers, and business stakeholders, to align security measures with operational requirements.
* Advocate for security-first principles while finding practical solutions that support business needs.
Continuous Improvement:
* Actively participate in the continuous improvement of operational security processes and procedures.
* Stay updated on emerging threats and technologies to enhance security postures continually.
Quality Assurance:
* Take pride in delivering high-quality security solutions by conducting thorough assessments and quality assurance checks.
* Ensure that operational security measures are scalable, sustainable, and aligned with industry best practices.
This is what we need from you:
* A bachelor's degree (or equivalent working experience) in Computer Science, Cyber Security, or a related field
* Proven experience as a Security Operations Solutions Engineer with a focus on operationalising security measures.
* Hands-on experience and expertise in operationalising Microsoft Defender, Sentinel, and Azure security solutions.
* Demonstrable expertise in Azure Identity, including PKI, certificate, secret deployment, management, and renewals.
* Proficient in Microsoft XDR solutions, particularly Microsoft Sentinel, with the ability to configure analytical rules and log ingestion/onboarding (including parsers).
* Skilled in deploying Azure services (e.g., VMs, Lighthouse, Sentinel) using ARM, YAML, and JSON templates.
* Strong hands-on experience with Azure DevOps, including configuring and owning pipelines.
* Ability to provide post-sales technical support with confidence and professionalism.
* Proven track record of leading complex technical delivery calls with both clients and internal stakeholders.
* Proficency in AWS, GCP, Linux, and firewall configurations relevant to operational security.
* In-depth understanding of security best practices, risk management, and business-aligned security strategies.
* Strong interpersonal skills and the ability to communicate effectively with both technical and non-technical stakeholders at all levels.
* Experience in training and knowledge transfer to operational teams.
* Ability to attain Security Clearance (SC), as required for the role.
And it would be great if you have:
* Advanced degrees and relevant certifications such as CISSP, CISM, or equivalent are highly desirable.
* A willingness to mentor or lead others
* Experience using other security toolsets (DarkTrace, Mimecast, SecureWorks, artic Wolf. D3)
* GitHub knowledge with contributions
* Azure automation (Functions, Logic Apps)
* SC-100, SC-200, AZ-500
* Knowledge of Python/Jinja/PowerShell
And this is what we offer in return:
* Private Medical Insurance
* Life assurance
* Group Income Protection
* Flexible benefits – Choose what suits you
* Access to a discount store
* Fruit, cereal, toast, biscuits, squash, fizzy drinks etc. in the office
* Celebrations for exciting life events
* Matched charity donations
* 25 days leave, plus a day for your birthday, plus cake sent to home
* Enhanced family leave
* Length of service awards
* Monthly socials
* Continuous Training
* Peer Reward programme
* Flexible working
* Cycle to work scheme
* Everymind at Work
* Agile working
* Branded SWAG for all employees and new joiners
* Cultural champions – Focusing on celebrating our diversity