Threat Detection Engineer

Threat Detection Engineer – Hybrid / Remote

London - Westminster

£60,000 - £80,000 per annum + flexible benefits

Join a well-established biotech company using large-scale genetic data and AI to predict disease risk and advance precision healthcare.

We’re looking for a Threat Detection Engineer who thrives on innovation and technical ownership. This role is not a traditional SOC position — you’ll focus on building high-impact detection capabilities, shaping how security protects sensitive genomic and AI-driven data at scale.

Why This Role is Exciting

  • High autonomy: Lead projects from idea to deployment
  • Innovation-driven: Develop cutting-edge detections beyond standard SIEM rules
  • Collaborative: Work closely with internal teams and an outsourced SOC partner
  • Mission-focused: Protect critical healthcare data that supports precision medicine

Key Responsibilities

  • Design and develop threat-led detections using threat intelligence and threat-hunting outputs
  • Create novel analytic techniques for incident detection
  • Collaborate with an MSP SOC to maintain and tune the detection catalogue
  • Build automated reporting dashboards using Microsoft Sentinel workbooks
  • Support security initiatives including ISO 27001 activities and KQL-based tasks
  • Ensure monitoring coverage across cloud platforms, SaaS apps, and internal systems
  • Contribute to documentation of processes, tools, and detection logic

What You’ll Bring

Must-Have Skills & Experience:

  • Strong proficiency in KQL and hands-on experience with Microsoft Sentinel
  • Familiarity with Microsoft Defender tools (Endpoint & O365)
  • Exposure to Azure cloud logging and Kubernetes environments
  • Knowledge of attacker TTPs and MITRE ATT&CK frameworks
  • Proactive, collaborative, and innovative mindset

Desirable / Nice-to-Have:

  • Experience with Python, Terraform, or CI/CD pipelines
  • Familiarity with Microsoft Purview, Entra ID, DLP, or Insider Risk tools
  • Understanding of ISO 27001, Agile ways of working
  • Knowledge of statistics, data science, or AI/ML applied to cybersecurity
  • Relevant certifications (MS-500, AZ-500, SC-series, Security+, GSOC, CCSK)

Perks & Benefits

  • Hybrid/remote working options
  • Flexible benefits package
  • Opportunity to innovate and make a real impact in threat detection
  • Work in a small, fast-paced, highly collaborative team
  • Contribute to advancing precision healthcare using genomic data and AI

Relevant job titles for this role include Threat Detection Engineer, SOC Engineer, Cyber Security Engineer, Detection Engineer, Security Operations Engineer, Blue Team Engineer, SIEM Engineer, Incident Response Engineer, Threat Hunter, Security Analyst, and Detection & Response Engineer.

Ready to build next-generation threat detection and protect life-changing data? Apply today!

Apply Now
Apply Now

Job Details

Company
Additional Resources Recruitment
Location
United Kingdom
Hybrid / Remote Options
Posted