Start Hiring Start Applying
Start Applying

StudySmarter Job Board

SOC - Security Content Engineer in London
Apply now
Job Board
Companies
Accenture UK & Ireland
SOC - Security Content Engineer

SOC - Security Content Engineer in London

London Full-Time 36000 - 60000 £ / year (est.) No home office possible
Apply now Go Premium
A

At a Glance

  • Tasks: Design and optimise detection logic for SOC platforms to enhance security.
  • Company: Accenture, a global leader in professional services with a focus on innovation.
  • Benefits: Competitive salary, diverse culture, and opportunities for personal growth.
  • Why this job: Join a team that makes a real impact in cybersecurity and technology.
  • Qualifications: Bachelor's in Cybersecurity or related field; 6-8 years in SOC content engineering.
  • Other info: Dynamic work environment with a strong commitment to inclusion and diversity.

The predicted salary is between 36000 - 60000 £ per year.

The Security Content Engineer designs, develops, and optimises detection logic, correlation rules, and analytic content across SOC platforms. They ensure the SOC maintains high detection efficacy with minimal false positives.

Key Responsibilities:

  • Design and implement detection use cases in SIEM and SOAR platforms based on threat intelligence and incident trends.
  • Develop and maintain detection logic aligned to MITRE ATT&CK and organisational threat models.
  • Tune and optimise existing correlation rules to reduce noise and improve accuracy.
  • Validate detections through controlled simulations and red team feedback.
  • Collaborate with the SOC Tooling Engineer to ensure efficient data source utilisation and parsing logic.
  • Document detection use cases, logic, testing methodology, and expected outputs.
  • Support compliance and audit efforts by ensuring use-case traceability and documentation.
  • Review post-incident findings to enhance detection and response coverage.
  • Maintain a repository of SOC use cases, KPIs, and performance metrics.

Role Requirements:

  • Education: Bachelor's degree in Cybersecurity, Data Analytics, or related field.
  • Experience: 6–8 years in SOC content engineering, detection development, or SIEM administration.
  • Certifications (preferred): Splunk Enterprise Security Certified Admin / Engineer, GIAC GCDA, or similar.
  • Strong SIEM query writing (e.g., SPL, KQL), regex, data modelling and familiarity with ATT&CK mappings.

Please Note: Any offer of employment is subject to satisfactory BPSS and the candidate being granted a level of security clearance which typically requires 10 years continuous UK address history, usually including no periods of 30 consecutive days or more spent outside of the UK, and a declaration of being a British passport holder with no dual nationalism at the point of application.

Closing Date for Applications: 01/06/2026. Accenture reserves the right to close the role prior to this date should a suitable applicant be found.

SOC - Security Content Engineer in London employer: Accenture UK & Ireland

Accenture is an exceptional employer, offering a dynamic work environment in London where innovation and collaboration thrive. With a strong commitment to inclusion and diversity, employees are empowered to grow their careers through continuous learning and development opportunities. The company’s focus on impactful work and community engagement ensures that every team member contributes to meaningful projects while enjoying a competitive salary and comprehensive benefits package.
A

Contact Detail:

Accenture UK & Ireland Recruiting Team

View Accenture UK & Ireland Profile

StudySmarter Expert Advice 🤫

We think this is how you could land SOC - Security Content Engineer in London

✨Network Like a Pro

Get out there and connect with folks in the industry! Attend meetups, webinars, or even just grab a coffee with someone who works in SOC. Building relationships can open doors that a CV just can't.

✨Show Off Your Skills

When you get the chance to chat with potential employers, don’t hold back! Share your experiences with detection logic and SIEM platforms. Use real examples to demonstrate how you've tackled challenges in the past.

✨Tailor Your Approach

Every job is different, so make sure you tailor your conversations to the specific role. Highlight your experience with MITRE ATT&CK and how you can contribute to their team’s success. It shows you're genuinely interested!

✨Apply Through Our Website

Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you’re serious about joining our awesome team at Accenture.

We think you need these skills to ace SOC - Security Content Engineer in London

Detection Logic Design
Correlation Rules Development
Analytic Content Optimisation
SIEM Query Writing (e.g., SPL, KQL)
Regex Proficiency
Data Modelling
MITRE ATT&CK Familiarity
Threat Intelligence Analysis
Incident Trend Analysis
Controlled Simulations Validation
Collaboration with SOC Tooling Engineer
Documentation of Use Cases and Testing Methodology
Compliance and Audit Support
Post-Incident Review Analysis
Performance Metrics Maintenance

Some tips for your application 🫡

Tailor Your CV: Make sure your CV is tailored to the SOC - Security Content Engineer role. Highlight your experience with SIEM, detection logic, and any relevant certifications. We want to see how your skills align with what we're looking for!

Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about cybersecurity and how your background makes you a great fit for our team. Keep it engaging and personal – we love to see your personality!

Showcase Your Technical Skills: Don’t forget to showcase your technical skills in your application. Mention your experience with SIEM query writing, regex, and data modelling. We’re keen on seeing how you can contribute to our detection capabilities!

Apply Through Our Website: We encourage you to apply through our website for the best chance of getting noticed. It’s super easy, and you’ll be able to track your application status. Plus, we love seeing applications come directly from our site!

How to prepare for a job interview at Accenture UK & Ireland

✨Know Your Stuff

Make sure you brush up on your SIEM query writing skills, especially SPL and KQL. Familiarise yourself with the MITRE ATT&CK framework and be ready to discuss how you've applied it in past roles. This will show that you’re not just a theory person but someone who can practically implement detection logic.

✨Showcase Your Experience

Prepare specific examples from your 6-8 years of experience in SOC content engineering or SIEM administration. Talk about the detection use cases you've designed and how you’ve optimised correlation rules. Real-world examples will help you stand out and demonstrate your expertise.

✨Collaboration is Key

Highlight your ability to work with others, especially with SOC Tooling Engineers. Discuss any past experiences where collaboration led to improved detection efficacy or reduced false positives. This aligns with Accenture's values of teamwork and client value creation.

✨Be Ready for Technical Questions

Expect technical questions related to data modelling, regex, and validation techniques. Prepare to explain your testing methodologies and how you document detection use cases. Being articulate about these processes will show your depth of knowledge and attention to detail.

SOC - Security Content Engineer in London
Accenture UK & Ireland
Location: London

Land your dream job quicker with Premium

You’re marked as a top applicant with our partner companies
Individual CV and cover letter feedback including tailoring to specific job roles
Be among the first applications for new jobs with our AI application
1:1 support and career advice from our career coaches
Go Premium

Money-back if you don't land a job in 6-months

A
Similar positions in other companies
UK’s top job board for Gen Z
discover-jobs-cta
Discover now
>