Deploy SOC services at client sites, including ad-hoc and non-standard configurations
Troubleshoot and resolve complex technical issues in SOC environments
Conduct onsite security assessments and architecture reviews
Create SOC architecture diagrams for implementation and documentation purposes
Deploy, manage, and maintain cloud platforms including AWS, Azure, and Microsoft 365
Support internal systems by providing escalation-level technical assistance
Deploy internal tools and systems to meet evolving operational needs
Maintain and secure Triskele Labs infrastructure and SaaS systems
Drive knowledge sharing and technical uplift within the Engineering team

Several years' hands-on experience in a security engineering, SOC engineering, or infrastructure security role
Practical experience deploying and administering SIEM platforms (e.g. Microsoft Sentinel, Splunk)
Hands-on EDR experience (e.g. Microsoft Defender for Endpoint, Rapid7 InsightIDR)
Email security / mail gateway experience (e.g. Mimecast, Microsoft Defender for Office 365)
Strong cloud skills across Azure and Microsoft 365, with working knowledge of AWS
A genuine knack for troubleshooting complex, non-standard environments end to end
The ability to produce clear architecture diagrams and technical documentation
Confidence working directly with clients — running onsite assessments, reviews, and deployments

Preferred certifications (not mandatory)

Microsoft SC or AZ suite certifications such as AZ-500 or SC-300 (highly regarded)
CrowdStrike or Rapid7 certifications
AWS Administrator certification
Elastic or Splunk certification
CompTIA Security+ or CCNA
Tertiary qualification in a related field

Cybersecurity Engineer

Key skills