Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Design and optimise detection logic for SOC platforms to enhance security.
- Company: Join Accenture, a global leader in professional services with a culture of innovation.
- Benefits: Competitive salary, inclusive environment, and opportunities for personal growth.
- Why this job: Make a real impact in cybersecurity while working with cutting-edge technology.
- Qualifications: Bachelor’s degree in Cybersecurity or related field; 6-8 years of relevant experience.
- Other info: Dynamic team with a focus on inclusion, diversity, and career advancement.
The predicted salary is between 36000 - 60000 £ per year.
The Security Content Engineer designs, develops, and optimises detection logic, correlation rules, and analytic content across SOC platforms. They ensure the SOC maintains high detection efficacy with minimal false positives.
Key Responsibilities:
- Design and implement detection use cases in SIEM and SOAR platforms based on threat intelligence and incident trends.
- Develop and maintain detection logic aligned to MITRE ATT&CK and organisational threat models.
- Tune and optimise existing correlation rules to reduce noise and improve accuracy.
- Validate detections through controlled simulations and red team feedback.
- Collaborate with the SOC Tooling Engineer to ensure efficient data source utilisation and parsing logic.
- Document detection use cases, logic, testing methodology, and expected outputs.
- Support compliance and audit efforts by ensuring use-case traceability and documentation.
- Review post-incident findings to enhance detection and response coverage.
- Maintain a repository of SOC use cases, KPIs, and performance metrics.
Role Requirements:
- Education: Bachelor’s degree in Cybersecurity, Data Analytics, or related field.
- Experience: 6–8 years in SOC content engineering, detection development, or SIEM administration.
- Certifications (preferred): Splunk Enterprise Security Certified Admin / Engineer, GIAC GCDA, or similar.
- Strong SIEM query writing (e.g., SPL, KQL), regex, data modelling and familiarity with ATT&CK mappings.
Please Note: Any offer of employment is subject to satisfactory BPSS and the candidate being granted a level of security clearance which typically requires 10 years continuous UK address history, usually including no periods of 30 consecutive days or more spent outside of the UK, and a declaration of being a British passport holder with no dual nationalism at the point of application.
Closing Date for Applications: 01/06/2026. Accenture reserves the right to close the role prior to this date should a suitable applicant be found.
SOC - Security Content Engineer employer: Accenture UK & Ireland
Contact Detail:
Accenture UK & Ireland Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land SOC - Security Content Engineer
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, attend meetups, and connect with people on LinkedIn. You never know who might have the inside scoop on job openings or can refer you directly.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your detection logic and projects. This gives potential employers a taste of what you can do and sets you apart from the crowd.
✨Tip Number 3
Prepare for interviews by practising common SOC scenarios and technical questions. Mock interviews with friends or mentors can help you feel more confident and ready to tackle any curveballs thrown your way.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen. Plus, we love seeing candidates who are proactive about their job search!
We think you need these skills to ace SOC - Security Content Engineer
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the SOC - Security Content Engineer role. Highlight your experience with SIEM, detection logic, and any relevant certifications. We want to see how your skills align with what we're looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about cybersecurity and how your background makes you a great fit for our team. Keep it engaging and personal – we love to see your personality!
Showcase Your Technical Skills: Don’t forget to showcase your technical skills in your application. Mention your experience with SIEM query writing, regex, and data modelling. We’re keen on seeing how you can contribute to our detection capabilities!
Apply Through Our Website: We encourage you to apply through our website for the best chance of getting noticed. It’s super easy, and you’ll be able to track your application status. Plus, we love seeing applications come directly from our site!
How to prepare for a job interview at Accenture UK & Ireland
✨Know Your Stuff
Make sure you brush up on your SIEM query writing skills, especially SPL and KQL. Familiarise yourself with the MITRE ATT&CK framework and be ready to discuss how you've applied these in past roles. The more specific examples you can provide, the better!
✨Showcase Your Problem-Solving Skills
Prepare to talk about how you've designed and implemented detection use cases in previous positions. Think of a couple of scenarios where you had to tune correlation rules or validate detections. This will show your practical experience and analytical thinking.
✨Collaboration is Key
Since this role involves working closely with SOC Tooling Engineers, be ready to discuss how you've collaborated with others in the past. Highlight any experiences where teamwork led to improved detection efficacy or reduced false positives.
✨Documentation Matters
Be prepared to explain your approach to documenting detection use cases and testing methodologies. Mention any tools or processes you’ve used to maintain traceability and compliance, as this is crucial for the role.
