Infrastructure Security Operations Engineer

Job Description

Basic Function

The Infrastructure Security Operations Engineer will support the ongoing improvement of Endava’s global security posture, focusing on vulnerability management, endpoint security, and application control. The role involves day-to-day operational tasks including monitoring, patching, and supporting security tooling such as Microsoft Intune and ThreatLocker. The engineer will work under guidance from senior security or infrastructure personnel and assist in enforcing security standards and addressing vulnerabilities.

Principal Functional Responsibilities

Vulnerability Management & Remediation

• Support vulnerability scans and remediation activities for infrastructure and endpoints.

• Collaborate with senior engineers and other IT teams to address identified vulnerabilities.

• Assist in documenting and improving vulnerability management procedures.

Endpoint Management & Security (Intune)

• Help configure and monitor endpoint security policies using Microsoft Intune.

• Assist in applying security baselines (e.g., encryption, antivirus, compliance checks).

• Provide operational support and troubleshooting for endpoint security issues.

Patch Management

• Participate in patch deployment processes for servers and workstations.

• Help monitor patch compliance and report on status and exceptions.

• Execute patching activities under established maintenance windows and guidelines.

Application Management & Control (ThreatLocker)

• Support ThreatLocker configuration and policy implementation.

• Assist in managing application allowlists and monitoring execution behavior.

• Help respond to alerts related to unauthorized applications or suspicious activity.

Security Incident Response & Compliance

• Act as a first-level responder to infrastructure security alerts or incidents.

• Follow established procedures for handling and escalating security events.

• Assist in maintaining documentation and evidence for compliance and audit purposes.

Continuous Improvement & Collaboration

• Collaborate with infrastructure and security teams to support projects and initiatives.

• Identify opportunities to streamline security operations.

• Stay informed of updates to tools, processes, and common threat vectors.

Qualifications

Experience & Skills

• 1–3 years of experience in Security Operations, Endpoint Security, or IT Operations with exposure to vulnerability and patch management.

• Familiarity with vulnerability management tools and basic remediation workflows.

• Working knowledge of Microsoft Intune for applying and supporting endpoint security policies.

• Exposure to ThreatLocker or similar application control solutions; able to follow and apply established policies.

• Basic understanding of patching practices across Windows and macOS environments; Linux experience is a plus.

• Some experience with security tools like Microsoft Defender ATP; familiarity with concepts behind EDR/XDR.

• Understanding of Active Directory, DNS basics, and how Group Policies affect endpoint configuration.

• Introductory knowledge of cloud environments (Azure, AWS, or SaaS) and their basic security principles.

• Awareness of incident response and change management processes; can follow documented procedures.

• Good problem-solving skills and ability to collaborate with others and communicate clearly.

Additional Information

Soft Skills & Competencies:

• Strong analytical, documentation, and troubleshooting skills.
• Ability to work independently and cross-functionally in fast-paced, global environments.
• Excellent communication and stakeholder management abilities.
• Continuous improvement mindset and passion for automation and efficiency.

At Endava, we’re committed to creating an open, inclusive, and respectful environment where everyone feels safe, valued, and empowered to be their best. We welcome applications from people of all backgrounds, experiences, and perspectives—because we know that inclusive teams help us deliver smarter, more innovative solutions for our customers. Hiring decisions are based on merit, skills, qualifications, and potential. If you need adjustments or support during the recruitment process, please let us know.