SenseOn Tech Limited
SenseOn is looking for a Forward Deployed Engineer to sit at the intersection of security engineering, software development, and customer success. This is one of the broadest and most impactful technical roles in the business, you will be the person who makes SenseOn work, in the real world, for real customers. As a Forward Deployed Engineer, you will embed directly with customers to deploy and configure the SenseOn platform, develop custom integrations, and ensure that every customer derives measurable security value as quickly as possible. You will own the technical outcome, supporting technical sales and working on technical delivery to enable SenseOn to be effective. This is not a pre-sales or demo role. You support both new business engagements and existing customer renewals, providing the technical depth to prove and quantify the value SenseOn delivers and ensuring that as deployments grow more complex with expanded log ingestion, customers always feel in safe hands. You will report to the VP of Technology and work closely with the Security Operations, Customer Success, Sales Engineering, and Product teams. Location: UK Travel: Approx 25% to customer sites Experience: 3 to 6 years+ The Role in Detail You will own the full technical lifecycle of a customer deployment, from initial architecture review through to live production, ongoing integration development, and long term platform health. You will build cloud integrations. You will write and tune detection rules in SIEMs. You will debug customer environments. And you will ensure that every customer you touch becomes a SenseOn advocate. Your impact does not stop at deployment. As SenseOn's log ingestion capability grows and deployments become more complex and wide ranging, you will work with the Customer Success team to build the technical business cases that win renewals and drive expansion bringing the same engineering rigour to proving value as you do to deploying it. Responsibilities Customer Deployment & Technical Success Lead end-to-end SenseOn platform deployments and complex log ingestion rollouts without customer disruption. Conduct architectural reviews to define deployment strategies and identify integration opportunities. Own the post sale technical relationship into steady state operations, delivering against technical success criteria tied to quantifiable security outcomes. Travel to UK and international customer sites approximately 25% of the time. Renewal Support & Customer Value Quantification Provide the technical evidence base and build business cases for renewals and expansions, translating platform telemetry and incident response data into clear customer outcomes. Proactively health check environments, close technical gaps, and resolve visibility issues ahead of renewal conversations. Collaborate with Sales Engineering to ensure continuity from pre sale technical validation through to post sale deployment. Software Development & Integration Engineering Write production quality software to build and maintain integrations across third party security tools, SIEMs, identity platforms, and AWS, Azure, and GCP environments. Contribute reusable connectors to the SenseOn integration library and create custom automation to optimise security operations workflows. Work confidently across backend languages (Python preferred; Go, JavaScript, and Bash valued) utilising RESTful APIs, webhooks, and data pipeline patterns. Detection Engineering & SIEM Development Write, tune, and maintain high fidelity, low noise SIEM detection rules by translating threat intelligence and attacker behaviour. Map coverage to the MITRE ATT&CK framework to address visibility gaps, and develop new detection logic with Security Operations. Iterate on rules post deployment to reduce false positives, and provide expert guidance to customers regarding their detection strategy and risk posture. Customer Success & Relationship Management Develop deep relationships with customer security leadership, acting as a trusted adviser across their security architecture. Proactively mitigate adoption risks, resolve deployment blockers, and conduct structured onboarding from platform fundamentals to advanced threat hunting. Monitor deployed environment health, address technical drift, and translate field experience into actionable product feedback internally. Pre Sales & Proof of Value Support Partner with Sales Engineering on Proof of Value (POV) engagements, providing technical credibility to differentiate SenseOn. Contribute to bespoke technical demonstrations, architecture proposals, and solution designs for complex prospects transitioning from legacy platforms or traditional SIEM solutions. Product & Analytics Feedback Act as a direct conduit between the field and product teams, raising well evidenced bugs, feature requests, and detection improvements. Participate in User Acceptance Testing (UAT) for new platform releases to provide field informed quality assurance. Identify cross environment patterns to highlight new detection opportunities or platform capability gaps for the analytics backlog. Essential 3-6 years of experience in a technical cybersecurity role, ideally spanning Security Operations and an engineering or customer facing function. Demonstrable software development capability, you must be able to write, review, and deploy code in a production context. Python is strongly preferred. Proven ability to write and tune detection rules in one or more SIEM platforms (e.g. Splunk, Microsoft Sentinel, Elastic, QRadar). You are comfortable translating threat scenarios into detection logic and iterating on rule quality based on operational feedback. Hands on experience building and troubleshooting integrations with cloud platforms (AWS, Azure, or GCP), REST APIs, and common security tooling including SIEMs, EDRs, XDRs, and NDRs. Strong understanding of networking fundamentals, operating systems (Windows and Linux), and identity and access management concepts. Experience deploying or operating software in containerised environments (Docker, Kubernetes). Excellent written and verbal communication skills, with the ability to engage credibly with both technical engineers and non technical stakeholders up to C-level. Based in the United Kingdom with the right to work in the UK. Highly Desirable Prior experience in a Forward Deployed Engineer, Customer Success Engineer, or Technical Account Manager role at a security or SaaS company. Experience supporting customer renewal engagements from a technical perspective - building business cases, evidencing value, and closing coverage gaps ahead of renewal conversations. Familiarity with log ingestion at scale, including the operational and architectural challenges of onboarding diverse log sources across complex enterprise environments. Experience with CI/CD pipelines, Infrastructure as Code (Terraform, Ansible), and modern DevSecOps practices. Exposure to machine learning or AI driven security analytics platforms. Relevant industry certifications such as CISSP, AWS Solutions Architect, GCIH, or equivalent. Experience supporting or replacing incumbent security platforms (e.g. Darktrace, CrowdStrike, Splunk) within enterprise customer transitions. What Success Looks Like Within your first 90 days, you will have completed at least one end to end customer deployment, established yourself as the technical lead for a portfolio of accounts, and shipped at least one integration adopted by a customer in production. Within 6 months, you will be leading complex multi environment deployments independently, supporting renewal engagements with clear technical business cases, and have contributed meaningful detection rules and integrations to SenseOn's shared library. Within 12 months, you will be shaping how SenseOn approaches deployment and customer value quantification at scale, informing product roadmap decisions, mentoring more junior team members, and owning the technical success of some of SenseOn's most strategic accounts. What We Offer Competitive salary commensurate with experience Unlimited holiday allowance Hybrid working model with flexibility around customer commitments Bi annual career progression review Personal learning and development budget MacBook and all necessary tooling provided Enhanced pension scheme Private healthcare through Vitality, with rewards and discounts Belong at SenseOn At SenseOn, we define Talent as employees who are customer obsessed and pursuing excellence. They are courageous, good people, doing good things, powering our mission. If this resonates with you, then you will always belong. Nothing else matters. We are an Equal Opportunity Employer We are an Equal Opportunity Employer and do not discriminate against any qualified employee or applicant. Difference is what makes us stronger.
SenseOn is looking for a Forward Deployed Engineer to sit at the intersection of security engineering, software development, and customer success. This is one of the broadest and most impactful technical roles in the business, you will be the person who makes SenseOn work, in the real world, for real customers. As a Forward Deployed Engineer, you will embed directly with customers to deploy and configure the SenseOn platform, develop custom integrations, and ensure that every customer derives measurable security value as quickly as possible. You will own the technical outcome, supporting technical sales and working on technical delivery to enable SenseOn to be effective. This is not a pre-sales or demo role. You support both new business engagements and existing customer renewals, providing the technical depth to prove and quantify the value SenseOn delivers and ensuring that as deployments grow more complex with expanded log ingestion, customers always feel in safe hands. You will report to the VP of Technology and work closely with the Security Operations, Customer Success, Sales Engineering, and Product teams. Location: UK Travel: Approx 25% to customer sites Experience: 3 to 6 years+ The Role in Detail You will own the full technical lifecycle of a customer deployment, from initial architecture review through to live production, ongoing integration development, and long term platform health. You will build cloud integrations. You will write and tune detection rules in SIEMs. You will debug customer environments. And you will ensure that every customer you touch becomes a SenseOn advocate. Your impact does not stop at deployment. As SenseOn's log ingestion capability grows and deployments become more complex and wide ranging, you will work with the Customer Success team to build the technical business cases that win renewals and drive expansion bringing the same engineering rigour to proving value as you do to deploying it. Responsibilities Customer Deployment & Technical Success Lead end-to-end SenseOn platform deployments and complex log ingestion rollouts without customer disruption. Conduct architectural reviews to define deployment strategies and identify integration opportunities. Own the post sale technical relationship into steady state operations, delivering against technical success criteria tied to quantifiable security outcomes. Travel to UK and international customer sites approximately 25% of the time. Renewal Support & Customer Value Quantification Provide the technical evidence base and build business cases for renewals and expansions, translating platform telemetry and incident response data into clear customer outcomes. Proactively health check environments, close technical gaps, and resolve visibility issues ahead of renewal conversations. Collaborate with Sales Engineering to ensure continuity from pre sale technical validation through to post sale deployment. Software Development & Integration Engineering Write production quality software to build and maintain integrations across third party security tools, SIEMs, identity platforms, and AWS, Azure, and GCP environments. Contribute reusable connectors to the SenseOn integration library and create custom automation to optimise security operations workflows. Work confidently across backend languages (Python preferred; Go, JavaScript, and Bash valued) utilising RESTful APIs, webhooks, and data pipeline patterns. Detection Engineering & SIEM Development Write, tune, and maintain high fidelity, low noise SIEM detection rules by translating threat intelligence and attacker behaviour. Map coverage to the MITRE ATT&CK framework to address visibility gaps, and develop new detection logic with Security Operations. Iterate on rules post deployment to reduce false positives, and provide expert guidance to customers regarding their detection strategy and risk posture. Customer Success & Relationship Management Develop deep relationships with customer security leadership, acting as a trusted adviser across their security architecture. Proactively mitigate adoption risks, resolve deployment blockers, and conduct structured onboarding from platform fundamentals to advanced threat hunting. Monitor deployed environment health, address technical drift, and translate field experience into actionable product feedback internally. Pre Sales & Proof of Value Support Partner with Sales Engineering on Proof of Value (POV) engagements, providing technical credibility to differentiate SenseOn. Contribute to bespoke technical demonstrations, architecture proposals, and solution designs for complex prospects transitioning from legacy platforms or traditional SIEM solutions. Product & Analytics Feedback Act as a direct conduit between the field and product teams, raising well evidenced bugs, feature requests, and detection improvements. Participate in User Acceptance Testing (UAT) for new platform releases to provide field informed quality assurance. Identify cross environment patterns to highlight new detection opportunities or platform capability gaps for the analytics backlog. Essential 3-6 years of experience in a technical cybersecurity role, ideally spanning Security Operations and an engineering or customer facing function. Demonstrable software development capability, you must be able to write, review, and deploy code in a production context. Python is strongly preferred. Proven ability to write and tune detection rules in one or more SIEM platforms (e.g. Splunk, Microsoft Sentinel, Elastic, QRadar). You are comfortable translating threat scenarios into detection logic and iterating on rule quality based on operational feedback. Hands on experience building and troubleshooting integrations with cloud platforms (AWS, Azure, or GCP), REST APIs, and common security tooling including SIEMs, EDRs, XDRs, and NDRs. Strong understanding of networking fundamentals, operating systems (Windows and Linux), and identity and access management concepts. Experience deploying or operating software in containerised environments (Docker, Kubernetes). Excellent written and verbal communication skills, with the ability to engage credibly with both technical engineers and non technical stakeholders up to C-level. Based in the United Kingdom with the right to work in the UK. Highly Desirable Prior experience in a Forward Deployed Engineer, Customer Success Engineer, or Technical Account Manager role at a security or SaaS company. Experience supporting customer renewal engagements from a technical perspective - building business cases, evidencing value, and closing coverage gaps ahead of renewal conversations. Familiarity with log ingestion at scale, including the operational and architectural challenges of onboarding diverse log sources across complex enterprise environments. Experience with CI/CD pipelines, Infrastructure as Code (Terraform, Ansible), and modern DevSecOps practices. Exposure to machine learning or AI driven security analytics platforms. Relevant industry certifications such as CISSP, AWS Solutions Architect, GCIH, or equivalent. Experience supporting or replacing incumbent security platforms (e.g. Darktrace, CrowdStrike, Splunk) within enterprise customer transitions. What Success Looks Like Within your first 90 days, you will have completed at least one end to end customer deployment, established yourself as the technical lead for a portfolio of accounts, and shipped at least one integration adopted by a customer in production. Within 6 months, you will be leading complex multi environment deployments independently, supporting renewal engagements with clear technical business cases, and have contributed meaningful detection rules and integrations to SenseOn's shared library. Within 12 months, you will be shaping how SenseOn approaches deployment and customer value quantification at scale, informing product roadmap decisions, mentoring more junior team members, and owning the technical success of some of SenseOn's most strategic accounts. What We Offer Competitive salary commensurate with experience Unlimited holiday allowance Hybrid working model with flexibility around customer commitments Bi annual career progression review Personal learning and development budget MacBook and all necessary tooling provided Enhanced pension scheme Private healthcare through Vitality, with rewards and discounts Belong at SenseOn At SenseOn, we define Talent as employees who are customer obsessed and pursuing excellence. They are courageous, good people, doing good things, powering our mission. If this resonates with you, then you will always belong. Nothing else matters. We are an Equal Opportunity Employer We are an Equal Opportunity Employer and do not discriminate against any qualified employee or applicant. Difference is what makes us stronger.
Twinstream Limited
Bristol, Gloucestershire
Information Security Manager £70,000 £80,000 Remote (UK) Eligible for SC/DV Clearance Protect. Enable. Lead. Join TwinStream a dynamic, engineering-led consultancy born from real-world problem solvers within UK government organisations. We bring technical excellence to complex missions, and now we re looking for someone who can elevate our security posture as we continue to grow. If you want a role where you're trusted, empowered, and hands-on with real impact this is it. Why TwinStream? In 2019, our founders united their expertise to build a business that delivers exceptional service and cutting-edge solutions across government, defence, and highly regulated sectors. Today, TwinStream teams operate both on-site with clients and remotely nationwide, supporting high-stakes, high-impact work. We're scaling rapidly and your voice will matter. The Role: Information Security Manager We re searching for a practical, proactive, mid-to-senior InfoSec practitioner who thrives on doing not just advising. This is a delivery-focused role, perfect for someone who enjoys: Crafting and updating policies Driving governance, risk, and compliance Embedding secure-by-design practices Boosting security awareness and culture Being the go-to security expert within the business You ll work independently, without line management duties, owning day-to-day information security operations. Our IT teams handle the tooling your mission is governance, risk, compliance, and enabling secure delivery. What You ll Be Doing Own and manage all information security incidents & organisational risks Maintain and evolve our Information Security Management System (ISMS) Lead policy creation, updates, and compliance tracking Drive continuous improvement of security practices and behaviours Ensure compliance with ISO 27001, Cyber Essentials Plus, UK GDPR, and MOD CSM v3/v4 Plan, coordinate, and support internal/external audits and pen tests Embed security into projects, cloud services, and software delivery Deliver engaging security training and awareness sessions Contribute to Business Continuity, Disaster Recovery, and internal audit Act as TwinStream s primary point of contact for all things InfoSec What You ll Bring Proven experience as an Information Security Manager or similar Strong experience in incident management, risk governance, and practical InfoSec delivery Ability to embed security into modern software development and cloud environments Strong knowledge of ISO 27001, Cyber Essentials Plus, and UK regulatory requirements Excellent communication skills confident translating security for all audiences Comfortable working remotely in a flexible, fast-paced environment Relevant certifications (e.g., CISSP, CISM, ISO 27001 Lead Implementer/Auditor) Eligible for UK Security Clearance (minimum SC) Why You ll Love Working With Us 8% employer pension contribution Private medical cover including dental & optical (for you and your family) Learning & development autonomy you drive your growth Flexible remote working that actually supports your life Electric vehicle salary sacrifice scheme Cycle to Work + Life Assurance 28 days holiday + bank holidays Quarterly meet-ups, summer party & Christmas celebrations We re building something special and you ll be at the heart of it. Ready to make your mark? Join a team where your expertise shapes how we protect people, systems, and missions that matter. Apply now and take the next step with TwinStream.
Information Security Manager £70,000 £80,000 Remote (UK) Eligible for SC/DV Clearance Protect. Enable. Lead. Join TwinStream a dynamic, engineering-led consultancy born from real-world problem solvers within UK government organisations. We bring technical excellence to complex missions, and now we re looking for someone who can elevate our security posture as we continue to grow. If you want a role where you're trusted, empowered, and hands-on with real impact this is it. Why TwinStream? In 2019, our founders united their expertise to build a business that delivers exceptional service and cutting-edge solutions across government, defence, and highly regulated sectors. Today, TwinStream teams operate both on-site with clients and remotely nationwide, supporting high-stakes, high-impact work. We're scaling rapidly and your voice will matter. The Role: Information Security Manager We re searching for a practical, proactive, mid-to-senior InfoSec practitioner who thrives on doing not just advising. This is a delivery-focused role, perfect for someone who enjoys: Crafting and updating policies Driving governance, risk, and compliance Embedding secure-by-design practices Boosting security awareness and culture Being the go-to security expert within the business You ll work independently, without line management duties, owning day-to-day information security operations. Our IT teams handle the tooling your mission is governance, risk, compliance, and enabling secure delivery. What You ll Be Doing Own and manage all information security incidents & organisational risks Maintain and evolve our Information Security Management System (ISMS) Lead policy creation, updates, and compliance tracking Drive continuous improvement of security practices and behaviours Ensure compliance with ISO 27001, Cyber Essentials Plus, UK GDPR, and MOD CSM v3/v4 Plan, coordinate, and support internal/external audits and pen tests Embed security into projects, cloud services, and software delivery Deliver engaging security training and awareness sessions Contribute to Business Continuity, Disaster Recovery, and internal audit Act as TwinStream s primary point of contact for all things InfoSec What You ll Bring Proven experience as an Information Security Manager or similar Strong experience in incident management, risk governance, and practical InfoSec delivery Ability to embed security into modern software development and cloud environments Strong knowledge of ISO 27001, Cyber Essentials Plus, and UK regulatory requirements Excellent communication skills confident translating security for all audiences Comfortable working remotely in a flexible, fast-paced environment Relevant certifications (e.g., CISSP, CISM, ISO 27001 Lead Implementer/Auditor) Eligible for UK Security Clearance (minimum SC) Why You ll Love Working With Us 8% employer pension contribution Private medical cover including dental & optical (for you and your family) Learning & development autonomy you drive your growth Flexible remote working that actually supports your life Electric vehicle salary sacrifice scheme Cycle to Work + Life Assurance 28 days holiday + bank holidays Quarterly meet-ups, summer party & Christmas celebrations We re building something special and you ll be at the heart of it. Ready to make your mark? Join a team where your expertise shapes how we protect people, systems, and missions that matter. Apply now and take the next step with TwinStream.
