Security Engineer - Detection Engineering & Automation
Tasks
- Apply detection as code and automation as code
- Automate alert enrichment and case management
- Build dashboards and metrics for detection efficacy
- Build detection coverage mapping
- Build modular automation components
- Contribute to purple team activities and detection gap analysis
- Design security automation workflows
- Design threat detections
- Implement detection logic
- Integrate and correlate security telemetry
- Integrate systems using REST APIs and webhooks
- Maintain documentation runbooks and playbooks
- Onboard new data sources and ensure data quality
- Support incident response improvements
- Translate MITRE ATTACK to detection logic
- Tune detections to reduce false positives
- Update detection logic from incident learnings
- Validate detections with testing and attack simulation
Perks/Benefits
- N/A
Skills/Tech-stack
Asset Inventory | Authentication | Azure Logic | Azure Logic Apps | CI/CD | Detection engineering | Endpoint Containment | Endpoint Security | Infrastructure as Code | JSON | Logic Apps | Mitre Attack | Pagination | Powershell | Python | REST API | Risk-based | Risk-based prioritization | SOAR | Security Automation | Security operations | Telemetry correlation | Version control | Vulnerability Management | “as-code”
Education
N/A
Roles
Related jobs
-
Cyber Operations Vice President GBP 100K-130KAnti-Malware | Data Loss Prevention | Data loss | Email Security | Event analysisEducation reimbursement | Family support programs | Flexible time off | Health benefits | Hybrid work modelExecutive-level Full TimeED3 - 20 Brandon Street, Edinburgh, … R22h ago
-
Site Reliability Engineer II GBP 47K-57KAWS | Access Management | Azure | Bash | CI/CDContributory pension scheme | Electric vehicle scheme | Employee assistance programme | Employee discounts scheme | Employee resource groups time to volunteerMid-level Full TimeUK - London (Bishopsgate), United Kingdom22h ago
-
Infrastructure Automation Engineer, Vice President GBP 90K-115KAlerting | Ansible | Azure DevOps | Azure Key Vault | BashEmployee networks | Flexible work/life support | Inclusive development opportunities | Paid volunteer daysExecutive-level Full TimeLondon, England, United Kingdom22h ago
-
APIs | Access Management | Alerting | Ansible | Azure DevOpsEmployee networks | Flexible work/life support | Inclusive development opportunities | Paid volunteer daysExecutive-level Full TimeLondon, England, United Kingdom22h ago
-
Site Reliability Engineer II GBP 47K-57KAmazon Web Services | Bash | CI/CD | Cloud Networking | Cloud computeContributory pension scheme | Electric vehicle scheme | Employee assistance programme | Employee discounts scheme | Employee resource groupsMid-level Full TimeUK - London (Bishopsgate), United Kingdom22h ago
-
Solutions Consultant - GRC & Cyber Risk GBP 64K-90KBusiness case | Business case development | Case Development | Contract Negotiation | Cyber RiskEmotional support | Financial benefits | Health benefits | Hybrid work environmentSenior-level Full TimeGreat Britain - Virtual - London, … R22h ago
-
Lead Platform Engineer GBP 80K-100KAMI | Amazon Web Services | Amazon Workspaces | Business Continuity | CI/CDAnnual leave | Bank holidays | Employer pension contribution | Government project work | Health and insurance benefitsSenior-level Full TimeSolihull, England, GB1d ago
-
Lead Security Engineer GBP 72K-98KAgile | CI/CD | Development Life Cycle | Penetration Testing | PythonSenior-level Full TimeBOURNEMOUTH, DORSET, United Kingdom1d ago
-
Head of Information Security GBP 65K-77KAI Risk | AI risk management | Access Control | Cybersecurity Awareness | Detection and Response30 days annual leave | Cycle to work scheme | Dog-friendly | Electric car scheme | Enhanced family leaveExecutive-level Full TimeTring, United Kingdom R1d ago
-
Senior Corporate Security Engineer GBP 65K-85KAccess Management | Audit Evidence Collection | Audit evidence | CASB | Conditional AccessBonuses for referring hires | Childcare vouchers | Flexible hours | Free access to professional training platforms | Gym membership reimbursementSenior-level Full TimeLondon, England, United Kingdom1d ago
-
Technical Solutions Engineer GBP 60K-105KAPI Design | API Key | API Testing | Access Management | Amazon SNSMid-level Full TimeUnited Kingdom or Ireland1d ago
-
Cybersecurity Engineer GBP 29K-31KAutomation | Bash | Event analysis | Incident Response | JavaScriptMid-level Full TimeLondon, England, United Kingdom1d ago
-
Application Security | CIS Controls | CSPM | Defender for Cloud | EDRExecutive-level Full TimeLondon, United Kingdom1d ago
-
Senior Cyber Security Engineer GBP 56K-71KAccess Control | Backup and Recovery | Balance of Plant | Control Systems | Critical InfrastructureSenior-level Full TimeStafford, United Kingdom1d ago
-
Senior Cyber Security Engineer GBP 56K-71KAccess Control | Backup and Recovery | Communication Networks | Control Systems | Critical InfrastructureSenior-level Full TimeStafford, United Kingdom1d ago
-
Principal Product Security Engineer USD 120K-151K800-53 | AI Security | AWS Security | Agile | Application SecurityCharitable giveback day | Medical/Dental/Vision insurance | Paid time off | Retirement benefitsSenior-level Full TimeBedford, United States1d ago
-
Lead Security Architect GBP 89K-120KAI/ML | AI/ML Security | Access Control | Access Management | Architecture governanceHybrid work modelSenior-level Full TimeLondon2d ago
-
API Gateway | AWS | Bot management | Burp Suite | CI/CDEqual opportunity workplace | Remote workSenior-level Full TimeLondon, United Kingdom2d ago
-
Unix / Openshift System Administrator GBP 49K-51KAnsible | Ansible Tower | Automation | CI/CD | Container monitoringSenior-level Full TimeGBR - Bristol, UK, United Kingdom2d ago
-
GCP Security Engineer GBP 50K-50KAccess Management | Bash | CI/CD | CNAPP | CSPMEnhanced pension plan | Family-friendly benefits | Flexible working | Health insurance | Holiday allowanceEntry-level Full TimeSalford Quays, United Kingdom2d ago
-
Lead Network & Cyber Security Engineer GBP 55K-70K60870-5-101 | 60870-5-104 | Anti-Malware | DNP3 | Detection SystemsDevelopment opportunities | Flexible work arrangements | Private health insuranceSenior-level Full TimeStafford, United Kingdom2d ago
-
Unix / Openshift System Administrator GBP 49K-51KAnsible | Ansible Tower | CI/CD | Docker | Enterprise LinuxAdoption leave | Continuous learning | Life insurance | Medical plan | On site 7am to 7pm Monday to FridaySenior-level Full TimeGBR - Bristol, UK, United Kingdom2d ago
-
Security Engineering Lead Engineer (Hybrid) GBP 72K-85KAgile | Application Security | Authentication | Authorization | CI/CDAnnual leave | Dental coverage | Flexible working options | Healthcare coverage | Internal mobilitySenior-level Full TimeBelfast 10 Mays Meadow, United Kingdom R2d ago
-
Cybersecurity Remediation Specialist GBP 50K-65K800-53 | API Security | Access Management | CNAPP | Cause analysisCoaching and learning | Flexible work schedule | In office minimum three days per week | Reasonable accommodations for recruitmentSenior-level Full TimeUK - Macclesfield, United Kingdom2d ago
-
Lead Network & Cyber Security Engineer GBP 55K-70K60870-5-101 | 60870-5-104 | Anti-Malware | DNP3 | Disaster RecoveryDevelopment opportunities | Flexible work arrangements | Private health insurance | Relocation assistance not providedSenior-level Full TimeStafford, United Kingdom2d ago