SecOps Engineer

Croydon, Surrey
Syntax Consultancy

SecOps Engineer

Croydon (Hybrid)

6 Month Contract

£500/day (Outside IR35)

SecOps Engineer needed with both active SC Clearance and NPPV3 Security Clearance. 6 Month Contract based in Croydon (Hybrid).

Paying up to £500/day (Outside IR35). Start ASAP in Feb/March 2026.

Hybrid Working – 3 days/week remote (WFH), and 2 days/week working on-site in the Croydon office, plus occasional travel to the Birmingham office.

A chance to work with a leading global IT transformation business specialising in delivering large-scale Government/Public Sector projects.

Key experience + tasks will include:

• SecOps Engineer needed to perform a key role in supporting technically complex + secure Government Cloud services programmes.
• SecOps Engineer with in-depth experience of Security Operations, Security Consultant, or Information Security related roles.
• Experience of supporting secure government Cloud migration/transformation programmes.
• Ensuring security procedures, controls + operational practices are compliant with Government Security Classifications framework and security policies.
• Maintaining Security Operating Procedures (SysOps), and Information Security management policies.
• Continuous improvement of security processes, supporting secure delivery across Cloud services + maintaining a strong security culture.
• Investigating security incidents and breaches, performing vulnerability scans for releases, vulnerability risk assessments + remediation planning.
• Conducting threat modelling to identify risks and inform secure design decisions.
• Providing assurance over patching operations, release notes + change management activities.
• Assessing external threat intelligence feeds + providing recommendations to mitigate risks.
• Conducting security incident investigations, accurate reporting + taking follow-up actions.
• Creating ITHC (IT Health Check) Remediation Action Plans, tracking progress, ITHC change management + delivery Kanban board tickets.
• Supporting certificate management ceremonies + cryptographic control processes.
• Managing digital access requests + supporting Joiner/Mover/Leaver processes to maintain secure access controls.
• Security Certifications (CISSP, CISM, CCSP, ISO 27001 Lead Auditor/Implementer), or similar.
• Experience of Critical National Infrastructure (CNI) and Government/GOV.UK programmes preferred.