Information & Cyber Security Operations Engineer

Crawley, England, United Kingdom

6/20/2025

As one of the world's largest networks of audit, tax and consulting firms, RSM delivers big ideas and premium service to help middle-market businesses thrive. We are a fast-growing firm with big ambitions -- we have a clear goal to become the premium adviser to the middle market, globally. This vision touches everything we do, motivating and inspiring us to become better every day. If you are looking for a firm where you can build a future and make an impact, then RSM is the place for you.

Make an Impact at RSM UK

The Cyber Security Operations Engineer will be responsible for working in conjunction with our MSSP to monitor, detect and respond to security incidents to protect our systems, networks and information assets. This role involves working closely with our MSSP and various departments to ensure the security of our digital infrastructure and compliance with security policies.

You will make an impact by:

• Agreeing policies, settings, configs and exemptions for Microsoft suite of tools (Sentinel, MDE/EDR, Defender Cloud, Defender ID, MIRM, Purview, Security CoPilot, etc) and non-Microsoft tools such as Mimecast email protection, Palo Alto next-gen firewalls, Cortex
• Monitoring and review our MSSP’s performance in monitoring, detecting and respond to incidents.
• Prioritising use cases, rules & alerts for implementation by our MSSP.
• Defining and maintain an ongoing continuous improvement plan for SecOps (RSM UK and our MSSP) including, but not limited to, automation.
• Working with our MSSP to define and maintain incident response processes and work with the MSSP to develop run-books;
• Implement and maintain a knowledge base repository for all MDR/XDR alerts.
• Responding to security incidents working with RSM's MSSP.
• Working with our MSSP to continuously improve detection capability and coverage.
  
  
  

What we are looking for:

We value diverse experiences and perspectives. Here’s what we’re looking for in our ideal candidate:

• Strong knowledge of computer networking concepts, protocols, and network security methodologies.
• Proven experience in a security operations role, with a strong understanding of security principles and practices.
• Proficiency with security tools and technologies, including SIEM, firewalls, IDS/IPS, malware protection software and vulnerability scanning techniques.
• Specific experience of Microsoft’s suite of security tools
• Strong analytical and problem-solving skills, with the ability to think critically and respond effectively to security incidents.
• Excellent communication and interpersonal skills, with the ability to work collaboratively with cross-functional teams.
  
  
  

What we can offer you:

We recognise that our people are our most important assets. That’s why we offer a flexible reward and benefits package that will help you have fulfilling experience, both in and out of work.

• Study Support
• Hybrid and Flexible working
• 27 Days Holiday with the option of purchasing additional days
• Lifestyle, Health, and Wellbeing including financial wellbeing benefits such as financial tools, electric car scheme and access to a virtual GP.
• Access to a suite of 300+ courses on demand developed by our inhouse Talent Development team.
  
  
  

Diversity and Inclusion at RSM

At RSM, we want to create a strong sense of belonging so that people of all identities, backgrounds, and cultures feel they can bring their true self to work. Our clients come from all walks of life. We aim to achieve that same diversity of background, experience and perspective in our own teams, so that we can genuinely understand our client's needs. Diverse teams bring a broader range of ideas and insights to work. That's why we're working together to ensure our firm's principles and processes support a firm culture that embraces difference and strengthens inclusion.