Build the detections that stop threats in their tracks. We are looking for a Senior SOC Engineer (Detection) to join our growing Cyber Security team. This is a hands‑on engineering role where you’ll design and deliver high‑quality detections across Microsoft Sentinel and Splunk, helping protect critical systems and clients in real time.
This role is hybrid: two days a week in the Farnborough office, three days from home. You must be eligible for SC Clearance.
What you’ll be doing
* Develop, test and deploy detection content across Microsoft Sentinel and Splunk SIEM.
* Write and optimise detection logic using KQL and SPL.
* Turn monitoring requirements and use cases into effective, actionable detections.
* Tune alerts to reduce false positives and improve SOC efficiency.
* Validate detections against telemetry and ensure accuracy.
* Support onboarding of log sources across cloud, infrastructure, identity and network.
* Collaborate with SOC, Threat Intelligence and Security Architecture teams.
* Investigate detection issues and improve performance and reliability.
* Drive continuous improvement using automation, scripting and best practice.
* Ensure detections are clearly documented and operationally usable.
What you’ll bring
* Experience in SOC engineering, detection engineering or SIEM engineering.
* Strong hands‑on experience with Microsoft Sentinel and Splunk.
* Solid knowledge of KQL and SPL.
* Experience building, testing and maintaining detection rules.
* Good understanding of SIEM lifecycle management and security telemetry.
* Knowledge of cloud environments and IT infrastructure.
* Familiarity with frameworks such as MITRE ATT&CK.
* Ability to analyse threats and translate them into detection capability.
Nice to have
* Experience with SOAR (Logic Apps / Splunk SOAR).
* Detection‑as‑code or CI/CD pipeline experience.
* Scripting in PowerShell, Python or similar.
* Experience with Git‑based workflows.
* Relevant certifications (Microsoft, Splunk, Cyber Security).
Employment details
* Employment type: Permanent.
* Location: Hybrid – 2 days Farnborough office, 3 days from home.
* Security clearance level: Eligible for SC Clearance.
* Salary: Up to £80,000.
* Benefits: 25 days annual leave (option to buy additional days), 4× life insurance, matched contributory pension up to 6%, 3% flex benefit, single private medical cover, £5,400 car allowance.
#J-18808-Ljbffr