1 of 1 Amazon ECS Jobs in the East of England

Elastic Stack (Elastic Security) and Splunk (Enterprise & ES) platforms at scale. Design, implement and maintain data pipelines, including log ingestion, enrichment and schema standardisation (ECS/CIM). Develop and tune security detection rules, translating threat intel and TTPs (MITRE ATT&CK) into actionable, low-noise alerts. Manage … including detection engineering, indexing, parsing and performance tuning. Strong expertise in data pipeline engineering, log enrichment, data quality and large-scale ingestion architectures (ECS/CIM). Proven ability to design, test and optimise detection content, including MITRE ATT&CK-aligned rules and risk-based alerting (RBA). Advanced ...