Security Operations Engineer

Leicester, United Kingdom

Apply now Apply later

Blue Light Card. Individually great, together unstoppable

The Role and the Team

At Blue Light Card, we’re on a mission to support our millions of members with meaningful digital experiences. We’ve recently undertaken a replatforming transformation, setting the foundations to tackle exciting greenfield projects and further enhance the experience for our members. With plenty of opportunities ahead, we’re looking for a Security Operations Engineer who is eager to make an impact. You’ll report to the Head of InfoSec and take ownership of Security Operations, helping to shape and strengthen our overall security landscape.

You’ll play a key role in shaping our growing security function and contributing to the maturity of our security programme, building resilient systems, influencing engineering practices, and driving meaningful change in a supportive environment.

What You’ll Do

  • Monitor, triage, and respond to security alerts and incidents—investigating and coordinating effective containment, resolution, and recovery
  • Proactively identify and assess vulnerabilities, recommending and applying improvements to strengthen our defences
  • Design, implement, and maintain security controls across cloud, network, and application environments
  • Continuously improve how we work by developing and refining playbooks, automating processes, and reducing manual effort
  • Collaborate closely with Engineering and IT teams to embed security at every stage of the development lifecycle
  • Help maintain compliance with frameworks such as ISO 27001, GDPR, PCI DSS, and CIS benchmarks
  • Contribute to evolving internal policies and promote awareness of good security practices across teams

What You’ll Bring

  • Practical experience in a Security Operations Engineer role, ideally having progressed from an IT or Security Analyst background into a more structured and mature security environment
  • A good understanding of digital security best practices across cloud, network, and application environments
  • First-hand experience triaging and responding to security incidents, with evidence of growing into more senior responsibilities
  • A track record of delivering improvements—such as designing new processes, leading on incidents, or implementing automation to reduce risk and effort
  • Practical experience working collaboratively with Engineering and IT teams to investigate, resolve, and prevent security issues
  • Familiarity with application security principles, with exposure to penetration testing or ethical hacking (CEH or similar certification is a plus)
  • Awareness of industry frameworks like ISO 27001, CIS, or similar, and ideally holding a CISMP certification
  • A proactive interest in cyber security trends, with a willingness to engage in continuous learning and community knowledge sharing

Our Culture

Our mission is simple – make heroes happy. Our members are the real-life heroes who keep us all safe, cared for, and thriving. It’s what gets us up in the morning and pushes us to go further, think bigger, and create something that truly matters. By focusing on their happiness, we create amazing experiences, deliver unrivalled discounts, innovative products, and world-class service.

We don’t just follow the usual path - we look for smarter, bolder ways to deliver real impact. We take ownership, move fast, and work shoulder to shoulder to build something special.

We’re committed to building a diverse and inclusive team where everyone feels they belong. Different perspectives and experiences help us grow, innovate, and better reflect the communities we serve.

We promote hybrid working, and value in-person collaboration so encourage time in our offices, where you can make the most of our fully stocked snack drawers – either the HQ in Leicestershire, or London, Holborn office. The frequency and office location will vary depending on the role and team, we aim to be flexible, but we aren’t able to offer fully remote working.

What We Offer

  • Hybrid working and flexible hours
  • 35 hour working week
  • Free parking and EV charging onsite at HQ
  • 25 days annual leave plus an additional day off for your birthday, and a buy and sell holiday scheme of up to 5 days
  • A company bonus scheme
  • Your own Blue Light Card and exclusive access to thousands of discounts
  • Generous funded BUPA medical insurance covering pre-existing conditions
  • Group auto-enrolment pension plan
  • Enhanced parental leave and absence leave
  • Healthcare cashback plan
  • Employee assistance programme (including mental health support) and mental health first aiders
  • Great social events e.g., festive party, summer party, team socials, sports matches
  • Regular company-wide recognition events e.g. Monthly Light’s Up and The Shine awards
  • Relaxed dress code and modern office space (games area, chill-out areas, book club, free drinks/snacks)
  • Onsite gym at HQ (including access to free HIIT & stretch classes)
  • Strong learning and development culture

#LI-Hybrid

Apply now Apply later

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  2  1  0

Tags: Application security Automation CEH Cloud Compliance Ethical hacking GDPR ISO 27001 PCI DSS Pentesting Vulnerabilities

Perks/benefits: Career development Flex hours Flex vacation Medical leave Parental leave Salary bonus Team events

Regions: Remote/Anywhere Europe
Country: United Kingdom

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.