Security Engineer - Detection Engineering & Automation

We're looking for a hands-on Security Engineer with strong skills in detection engineering, automation, and modern security tooling. You'll build high-fidelity detections, automate response workflows, and strengthen security capabilities across cloud and enterprise environments.

What you'll do

• Build and tune detections across endpoint, identity, vulnerability, and cloud telemetry
• Translate MITRE ATT&CK and threat Intel into actionable detection logic
• Automate response workflows using Azure Logic Apps
• Integrate platforms such as Rapid7, SentinelOne, CrowdStrike, and other security tools via REST APIs
• Correlate telemetry, onboard new data sources, and improve detection coverage
• Feed incident learnings back into detections, automation, and runbooks

What we're looking for

• Experience in Detection Engineering/Security Automation/SecOps Engineering
• Hands-on with Rapid7, SentinelOne and/or CrowdStrike
• Strong automation skills (Azure Logic Apps required) and API integration experience
• Solid understanding of attacker behaviour, endpoint security, and vulnerability management
• Scripting ability (Python, PowerShell preferred)
• Familiarity with behaviour-based detection and MITRE ATT&CK
• Bonus: SOAR experience, cloud/security telemetry, regulated environments, CI/CD or IaC exposure

This role is perfect for someone who thinks like an attacker, loves automation, and wants to engineer scalable, resilient detection and response capabilities