Threat Detection Engineer (KQL / Microsoft Sentinel)

🚨 Threat Detection Engineer (KQL / Microsoft Sentinel)

📍 Hybrid / Remote

💰 £60,000 - £80,000 + Benefits

We’re partnering with an innovative biotech company using large-scale genetic data and AI to help predict disease risk and shape the future of precision healthcare.

They’re now looking for a Threat Detection Engineer with strong KQL and Microsoft Sentinel expertise to help build and evolve their threat detection capability.

This is not a traditional SOC role. Instead of spending your day triaging alerts, you’ll focus on engineering high-quality detections, building scalable analytics, and improving visibility across complex cloud environments.

🔍 What you’ll be doing:

• Designing and tuning threat detections in Microsoft Sentinel using KQL

• Building analytic rules and detection logic based on threat intelligence and hunting outputs

• Improving signal quality and reducing false positives

• Developing Sentinel workbooks and reporting

• Working closely with an outsourced SOC to continuously improve detection coverage

• Expanding monitoring across cloud, SaaS, and internal platforms

✅ What they’re looking for:

• Strong hands-on KQL (Kusto Query Language) experience

• Experience building detections in Microsoft Sentinel

• Background in Threat Detection Engineering / SIEM Engineering

• Understanding of MITRE ATT&CK and threat-led detection methodologies

• Experience working alongside SOC or MSSP environments

• Familiarity with Microsoft Defender technologies

💡 Nice to have:

• Azure / Kubernetes logging exposure

• Detection tuning and false positive reduction experience

• Detection-as-code / CI-CD exposure

• Python, Terraform, or automation scripting knowledge

• Experience within regulated environments

🎯 Why join?

• Hybrid / remote flexibility

• High ownership and real technical impact

• Work on meaningful security challenges protecting genomic and healthcare data

• Fast-paced, collaborative engineering environment

• Opportunity to deepen expertise in KQL and Microsoft Sentinel

If you enjoy building detections from the ground up and want to work on genuinely impactful technology, I’d love to speak with you.