Threat Detection Automation Analyst (London Area)

A forward-thinking Financial Services firm is seeking a Threat Detection Automation Analyst to join its Threat Intelligence team. They are looking for an individual to join and help drive forward a baseline of threat detection use cases in their SIEM (Splunk). They have just established a new detection-as-code pipeline from a GitHub repository and are in the next phase of populating new use cases. This role will involve writing new use cases based on the output and direction of the threat intelligence team, as well as testing use cases with a new breach and attack simulation tool.

Ideally, the individual joining will have experience of both SIEM detection engineering and using a BAS tool. Coupled with sound knowledge of the current Cyber threat landscape including groups, TTPs and attack vectors relevant to Financial Services.

To be considered for this role, you will have experience from either a SOC, CTI or are a Security Engineer with hands on technical experience.

This is a hybrid opportunity (1-2 days in office), with a salary offering of up to £70,000 on the base.

*Please note that this client cannot sponsor*