Threat Detection Engineer - Hybrid / Remote

Join a well-established biotech company using large-scale genetic data and AI to predict disease risk and advance precision healthcare.

We’re looking for a Threat Detection Engineer who thrives on innovation and technical ownership. This role is not a traditional SOC position, you’ll focus on building high-impact detection capabilities, shaping how security protects sensitive genomic and AI-driven data at scale.

This role offers hybrid / remote working options, a salary range of £60,000 - £80,000 and benefits.

Why This Role is Exciting

  • High autonomy: Lead projects from idea to deployment
  • Innovation-driven: Develop cutting-edge detections beyond standard SIEM rules
  • Collaborative: Work closely with internal teams and an outsourced SOC partner
  • Mission-focused: Protect critical healthcare data that supports precision medicine

Key Responsibilities

  • Design and develop threat-led detections using threat intelligence and threat-hunting outputs
  • Create novel analytic techniques for incident detection
  • Collaborate with an MSP SOC to maintain and tune the detection catalogue
  • Build automated reporting dashboards using Microsoft Sentinel workbooks
  • Support security initiatives including ISO 27001 activities and KQL-based tasks
  • Ensure monitoring coverage across cloud platforms, SaaS apps, and internal systems
  • Contribute to documentation of processes, tools, and detection logic

What You’ll Bring

Must-Have Skills & Experience:

  • Previously worked as a Threat Detection Engineer or in a similar role.
  • Strong proficiency in KQL and hands-on experience with Microsoft Sentinel
  • Familiarity with Microsoft Defender tools (Endpoint & O365)
  • Exposure to Azure cloud logging and Kubernetes environments
  • Knowledge of attacker TTPs and MITRE ATT&CK frameworks
  • Proactive, collaborative, and innovative mindset

Desirable / Nice-to-Have:

  • Experience with Python, Terraform, or CI/CD pipelines
  • Familiarity with Microsoft Purview, Entra ID, DLP, or Insider Risk tools
  • Understanding of ISO 27001, Agile ways of working
  • Knowledge of statistics, data science, or AI/ML applied to cybersecurity
  • Relevant certifications (MS-500, AZ-500, SC-series, Security+, GSOC, CCSK)

Perks & Benefits

  • Hybrid / remote working options
  • Flexible benefits package
  • Opportunity to innovate and make a real impact in threat detection
  • Work in a small, fast-paced, highly collaborative team
  • Contribute to advancing precision healthcare using genomic data and AI

Ready to build next-generation threat detection and protect life-changing data Apply today!

Important Information: We endeavour to process your personal data in a fair and transparent manner. In applying for this role, Additional Resources will be acting in your best interest and may contact you in relation to the role, either by email, phone, or text message. For more information see our Privacy Policy on our website. It is important you are aware of your individual rights and the provisions the company has put in place to protect your data. If you would like further information on the policy or GDPR please contact us.

Additional Resources Ltd is an Employment Business and an Employment Agency as defined within The Conduct of Employment Agencies & Employment Businesses Regulations 2003.

Keywords:  Cyber Threat Engineer, Detection & Response Engineer, SIEM Engineer, Security Detection Engineer,T hreat Hunting Engineer, Security Automation Engineer, SOC Engineer, Incident Response Engineer, Cloud Security Engineer, Network Security Engineer, Cybersecurity Analyst (Threat Focus), Threat Intelligence Analyst, Security Monitoring Engineer, Endpoint Security Engineer, Cyber Defense Engineer

Apply Now
Apply Now

Job Details

Company
Additional Resources
Location
Westminster, City of Westminster, Greater London, United Kingdom
Hybrid / Remote Options
Employment Type
Permanent
Salary
£60000 - £80000/annum
Posted