Role Overview
* Location: Farnborough/Hybrid (3 days per week on site)
* Industry: Defence & National Security
What You’ll Be Doing
* Designing and building high‑quality detection rules and use cases across SIEM and EDR platforms
* Continuously tuning alerts to reduce noise and improve signal quality
* Monitoring and investigating security alerts to identify genuine threats
* Running proactive threat hunting activities to uncover advanced or hidden attacker behaviour
* Supporting incident response efforts with deep detection insight
* Expanding detection coverage using threat intelligence and adversary techniques mapped to MITRE ATT&CK
* Creating automation and playbooks to speed up triage and response
* Documenting detections and sharing knowledge with SOC analysts
Main Skills Needed
* Due to the nature of the work, candidates MUST be Security Clearance‑eligible or currently hold a clearance.
* Strong hands‑on experience with SIEM tools, particularly Elastic Security
* Experience with EDR technologies such as Elastic XDR, Defender, CrowdStrike, or similar
* Solid understanding of log sources across endpoint, network, cloud, and identity environments
* Proven ability to develop detection rules using query languages like ESQL, KQL, or Lucene
* Practical SOC experience covering alert triage, investigation, and analysis
* Deep knowledge of MITRE ATT&CK, malware behaviour, lateral movement, and persistence techniques
What’s in It for You
* Work on genuinely meaningful systems in high‑security environments
* A culture built around collaboration, innovation, and quality
* Clear investment in professional development and training
* Private medical insurance, life assurance, and pension scheme
* Cycle to Work, employee perks, and discretionary bonus
* The opportunity to grow with an organisation scaling rapidly as part of a wider global group
Call to Action
If you’re nodding along, let’s take the next step.
We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, colour, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.
By applying you are confirming you are happy to be added to the Addition Solutions mailing list regarding future suitable positions. You can opt out of this at any time simply by contacting one of our consultants.
#J-18808-Ljbffr