Responsibilities
Threat Detection Use Case Development
Design and implement detection logic aligned to specific threat scenarios, using industry frameworks such as MITRE ATT&CK. Maintain detection content throughout its lifecycle from development and testing to deployment and tuning. Work with client Lead Analysts to ensure content relevance and effectiveness in detecting threats across various environments.
Proactive Threat Hunting
Conduct hypothesis-driven threat hunts based on client telemetry, threat intelligence, and observed anomalies. Use available data sources and tools to identify suspicious or malicious activity that may bypass existing detections. Document and present findings in a clear and actionable format for both internal teams and clients.
Content QA and Maintenance
Participate in the review and validation of detection content prior to deployment. Assist in updating runbooks, SOPs, and detection playbooks to reflect changes in tools, threats, or client requirements. Support efforts to maintain consistency, accuracy, and quality in all delivered content.
Collaboration & Knowledge Sharing
Actively engage with the wider SOC, threat intelligence, and tooling teams to refine detection strategies. Share insights, findings, and improvements with team members through documentation, workshops, or informal sessions. Support cross-team initiatives and help drive a culture of continuous improvement and innovation.
Benefits
- 25 days vacation per year
- Private medical insurance
- 3 extra days leave per year for charitable work of your choice
- Flexibility and mobility required to deliver this role (may require onsite time with clients and partners)
Equal Employment Opportunity Statement
We believe that no one should be discriminated against because of their differences. All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, sexual orientation, gender identity or expression, marital status, citizenship status or any other basis as protected by applicable law. Our rich diversity makes us more innovative, more competitive, and more creative, which helps us better serve our clients and our communities.
Security Clearance Requirements
Any offer of employment is subject to satisfactory BPSS and SC security clearance which requires 5 years continuous UK address history and declaration of being a British passport holder with no dual nationality at the point of application.
