Job Description
Build the detections that stop threats in their tracks. We are looking for a Senior SOC Engineer (Detection) to join our growing Cyber Security team. This is a hands‑on engineering role where you’ll design and deliver high‑quality detections across Microsoft Sentinel and Splunk, helping protect critical systems and clients in real time.
This role is hybrid: two days a week in the Farnborough office, three days from home. You must be eligible for SC Clearance.
What you’ll be doing
- Develop, test and deploy detection content across Microsoft Sentinel and Splunk SIEM.
- Write and optimise detection logic using KQL and SPL.
- Turn monitoring requirements and use cases into effective, actionable detections.
- Tune alerts to reduce false positives and improve SOC efficiency.
- Validate detections against telemetry and ensure accuracy.
- Support onboarding of log sources across cloud, infrastructure, identity and network.