At a Glance
- Tasks: Join the cyber defence team to design and refine detection rules and investigate security events.
- Company: Leading cybersecurity firm with a commitment to innovation and inclusivity.
- Benefits: Generous pension, annual bonus, share schemes, and 28 days holiday plus bank holidays.
- Other info: Flexible working options and a supportive culture for colleagues with disabilities.
- Why this job: Make a real impact in cybersecurity while developing your skills in a dynamic environment.
- Qualifications: 1-2 years experience in threat detection and analysis, with a strong understanding of attacker behaviour.
The predicted salary is between 48987 - 54430 £ per year.
Salary: £48,987 - £54,430
Location: Edinburgh, Bristol, Leeds or Manchester
Hours: Full-time – 35 hours
Working Pattern: Hybrid; at least two days per week, or 40% of our time, at one of our office sites. Colleagues with disabilities can be supported with workplace adjustments including hybrid working expectations in line with our Flexibility Works policy.
End Date: Tuesday 02 June 2026
Flexible Working Options: Hybrid Working, Job Share
Responsibilities
This role sits at the heart of cyber defence, combining analytical depth with real operational impact. It focuses on designing and continuously refining detection rules informed by threat intelligence, modelling and real‑world investigations, ensuring controls remain effective against evolving risks. The position leads end‑to‑end triage and investigation of security events, using logs and telemetry to reach clear, evidence‑based conclusions and elevate high‑risk activity with structured findings and practical recommendations. It also includes proactive threat hunting and modelling to build insight into attacker behaviour and emerging risks, alongside improving response playbooks and introducing automation to accelerate detection and response. Learning is captured and shared through documentation and post‑incident reviews, helping the team continuously raise its standards and resilience.
Qualifications
- Strong understanding of threat detection platforms, detection lifecycle concepts and investigation methods (1-2+ years experience)
- Ability to analyse security logs, events and telemetry to reach clear, reasoned conclusions
- Knowledge of attacker behaviour and Tactics, Techniques and Procedures (TTPs) (1-2+ years experience)
- Understanding of detection logic, including SIEM use cases and detection‑as‑code (DaC) concepts
- Awareness of advanced cyber defence concepts and how to apply them in practice
- Willingness to participate in an on‑call rota and regular weekend working where required
Benefits
- A generous pension contribution of up to 15%
- An annual bonus award, subject to Group performance
- Share schemes including free shares
- Benefits you can adapt to your lifestyle, such as discounted shopping
- 28 days’ holiday, with bank holidays on top
- A range of wellbeing initiatives and generous parental leave policies
We offer reasonable workplace adjustments for colleagues with disabilities, including flexibility in office attendance, location and working patterns. As a Disability Confident Leader, we guarantee interviews for a fair and proportionate number of applicants who meet the minimum criteria for the role with a disability, long‑term health or neurodivergent condition through the Disability Confident Scheme.
Junior Detection & Response Engineer in Leeds employer: Lloyds Banking Group
As a Junior Detection & Response Engineer, you will thrive in a dynamic and inclusive work environment that prioritises employee growth and well-being. With a generous pension contribution, flexible working options, and a commitment to diversity, our company fosters a culture of continuous learning and collaboration, ensuring that every team member can make a meaningful impact in the field of cyber defence. Join us in Edinburgh, Bristol, Leeds, or Manchester, where you will be supported in your career journey while contributing to cutting-edge security initiatives.
StudySmarter Expert Advice🤫
We think this is how you could land Junior Detection & Response Engineer in Leeds
✨Tip Number 1
Network like a pro! Reach out to folks in the industry on LinkedIn or at local meetups. We all know that sometimes it’s not just what you know, but who you know that can help you land that dream job.
✨Tip Number 2
Get your hands dirty with practical experience. Whether it's through internships, volunteering, or personal projects, showing that you can apply your skills in real-world scenarios will make you stand out. We love seeing candidates who are proactive!
✨Tip Number 3
Prepare for interviews by practising common questions and scenarios related to detection and response. We recommend doing mock interviews with friends or mentors to build confidence and refine your answers.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we’re always looking for passionate individuals who want to make a difference in cyber defence.
We think you need these skills to ace Junior Detection & Response Engineer in Leeds
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Junior Detection & Response Engineer role. Highlight your experience with threat detection platforms and any relevant projects you've worked on. We want to see how your skills match what we're looking for!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're passionate about cyber defence and how your background makes you a great fit for our team. Don’t forget to mention any specific experiences that relate to the responsibilities listed in the job description.
Showcase Your Analytical Skills:Since this role involves a lot of analysis, make sure to showcase your analytical skills in your application. Provide examples of how you've successfully analysed security logs or events in the past. We love seeing clear, evidence-based conclusions!
Apply Through Our Website:We encourage you to apply through our website for the best chance of getting noticed. It’s super easy, and you’ll be able to keep track of your application status. Plus, we can’t wait to see what you bring to the table!
How to prepare for a job interview at Lloyds Banking Group
✨Know Your Stuff
Make sure you brush up on your understanding of threat detection platforms and investigation methods. Be ready to discuss your experience with analysing security logs and how you've applied TTPs in real-world scenarios. This will show that you’re not just familiar with the concepts, but you can also apply them effectively.
✨Showcase Your Analytical Skills
Prepare to demonstrate your analytical thinking during the interview. You might be asked to solve a hypothetical security scenario or analyse a set of logs. Practise explaining your thought process clearly and logically, as this will highlight your ability to reach reasoned conclusions under pressure.
✨Be Ready for Technical Questions
Expect some technical questions about detection logic and SIEM use cases. Brush up on detection-as-code concepts and be prepared to discuss how you would improve response playbooks. This is your chance to show off your knowledge and how you can contribute to their cyber defence strategies.
✨Ask Insightful Questions
At the end of the interview, don’t forget to ask questions! Inquire about the team’s current challenges in threat hunting or how they measure the effectiveness of their detection rules. This shows your genuine interest in the role and helps you understand if the company is the right fit for you.
