SIEM Detection Engineer | Cyber Security
Farnborough (Hybrid – 2 days onsite)
Up to £65,000 + Excellent Benefits
SC Clearance (or eligibility required)
Ready to engineer the frontline of cyber defence?
We’re working with a highly respected cyber security operation supporting critical defence environments, seeking a SIEM Detection Engineer to strengthen and evolve advanced threat detection capability across secure enterprise environments.
This is a hands‑on technical role where you’ll design, build and optimise detection logic across SIEM platforms, working directly against real‑world attacker techniques in a mature, high‑performing SOC.
You’ll have the autonomy to shape detection strategy, influence capability development, and act as a technical SME within a complex MSSP environment.
What you’ll be doing:
* Engineering and refining advanced SIEM detections across secure environments
* Researching emerging threats and mapping detections to MITRE ATT&CK
* Tuning detections to improve fidelity and reduce false positives
* Supporting SOC analysts and wider engineering teams with technical expertise
* Driving detection maturity and technical standards
What we’re looking for:
* StrongSplunk (SPL) and/or Microsoft Sentinel (KQL) experience
* Detection engineering experience within enterprise or MSSP environments
* Solid understanding of attacker TTPs and threat detection methodologies
* Scripting ability (Python / PowerShell)
* Knowledge of cloud and enterprise infrastructure
* SC Cleared or eligible
* Desirable: QRadar, EDR threat hunting, CrowdStrike, Defender for Endpoint.
Why this role
You’ll join a collaborative cyber team working on genuinely meaningful defence‑focused projects, with strong progression, ongoing development, and the opportunity to make a measurable impact.
Interested? Apply now or reach out for a confidential conversation
#J-18808-Ljbffr