Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Develop and deploy SIEM detection rules to combat cyber threats.
- Company: Join the Police Digital Service, a leader in tech for UK policing.
- Benefits: Enjoy 28 days annual leave, flexible hours, and a great pension scheme.
- Why this job: Make a real difference in public safety while working with cutting-edge technology.
- Qualifications: Experience in log analysis, SIEM platforms, and software development required.
- Other info: Hybrid working model with opportunities for career growth and community involvement.
The predicted salary is between 42000 - 58000 £ per year.
Join Police Digital Service as NMC Cyber Security Detection Engineer x 2. Full time Permanent. Salary starting at £50,000.
About Police Digital Service
To protect people from harm in our rapidly changing world, police services must not only keep up with technology and business changes but develop capabilities and ways of working that will enable them to adapt to and deal with the complexity of modern criminality. Police Digital Service strives to be the go-to partner for technology developments and programmes across UK policing. Our team provides technical advice and delivers services to help policing and law enforcement organisations across the UK prioritise and focus on technology efforts. Our vision is to support UK policing to keep people safe, get more from technology investments and make better use of public money, and we’re always on the lookout for great talent to help us achieve this.
The National Management Centre (NMC) is part of Police Digital Service and provides visibility and control of information risks for policing. It supports the 24x7x365 nature of police operations, providing a threat detection and response capability for digital services before, during and after cyber-attacks, enabling stakeholders to understand and proactively manage risk across the technology estate at both the national and force level.
Key Responsibilities
- Development, maintenance, and deployment of SIEM detection rules for complex technical environments.
- Working alongside wider NMC functions, maintain knowledge of the threat landscape and TTPs employed by threat actors.
- Work across wider NMC functions to ensure detections are relevant and effective.
- Creation of custom solutions using both low-code and traditional development approaches.
- Optimization of log collection to align with detection requirements.
- Maintain documentation for detection rules to be used by analysts.
- Scoping, testing and implementing new SIEM data connectors.
- Working with wider NMC teams, contributing to Continual Service Improvement and innovations.
- Support with the creation of automation and analyst playbooks.
What you need to succeed in the role
Essential:
- Experience with log analysis and correlation of large datasets from multiple data sources to identify and investigate attack patterns.
- Experience of supporting and developing SIEM platforms in the context of a Security Operations Centre.
- Experience of log source configuration and parsing, as part of a SIEM implementation, including experience of data normalisation using RegEx.
- Practical experience in the creation, testing, implementation, and support of custom tooling to support Security Operations.
- Experience working with APIs.
- Practical experience in software development and scripting, preferably PowerShell and Python.
- Initiative and the ability to produce quality work without close supervision.
- Good written and verbal communication skills, particularly in relation to technical subjects.
- Attention to detail and genuine passion for maintaining high quality software configuration.
- Broad cyber security awareness and practical experience.
- Experience working with code repositories and CI/CD.
- Ability to acquire SC and NPPV3 level clearances.
Desirable:
- Certifications that demonstrate a combination of offensive and defensive knowledge - PNPT / OSCP / BTL2 / GCFAPractical experience in software development and scripting, preferably PowerShell and Python.
- Previous public sector experience.
- Previous SOC or security engineering experience.
- Previous experience monitoring the security of cloud technologies.
- Experience with Microsoft Power Apps / Power Automate and Azure Logic Apps.
Why Join us?
- Balance is important and we want you to take time off to recharge - we offer 28 days' annual leave plus bank holidays, rising to 30 days after 5 years of service. Holiday Purchase also available.
- Flexible working hours - We trust you to do your job and we appreciate that life doesn’t always fit around a 9 to 5 workday. We operate core hours of 8 to 6, Monday to Friday (37hr week).
- We care about your well-being - we have an EAP that offers not just welfare benefits but also retail discounts.
- Plan for the future - we offer an excellent pension scheme and life assurance cover.
- Put your mind at rest regarding your health - offering remote GP, mental health and physiotherapy appointments via video consultation.
- Family - Enhanced maternity and paternity pay along with a flexible return to work.
- Community - one paid day off per year for volunteering.
Diversity, equity and inclusion
We are committed to equal opportunity for all and will not discriminate on any grounds. We encourage applications from people from the widest possible span of experience. We particularly welcome applications from Black, Asian and Minority Ethnic (BAME) candidates and people with disabilities.
Working Arrangements
At the NMC, you will benefit from hybrid working, getting the advantages of both face-to-face team engagement and home working. NMC employees have the opportunity to work in our modern office environment for in-person collaboration, however you will also get the opportunity to work from home 2 days a week. All applicants must be eligible for NPPV3 and SC clearances. Successful applicants will require NPPV3 clearance to have been approved before starting with PDS.
NMC Cyber Security Detection Engineer in Preston employer: Police Digital Services
Contact Detail:
Police Digital Services Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land NMC Cyber Security Detection Engineer in Preston
✨Tip Number 1
Network like a pro! Reach out to folks in the cyber security field, especially those connected to Police Digital Service. Attend industry events or webinars, and don’t be shy about sliding into DMs on LinkedIn. You never know who might have the inside scoop on job openings!
✨Tip Number 2
Show off your skills! Create a portfolio showcasing your projects, especially any custom tooling or SIEM implementations you've worked on. This is your chance to demonstrate your practical experience and passion for cyber security, so make it shine!
✨Tip Number 3
Prepare for interviews by brushing up on your technical knowledge and soft skills. Be ready to discuss your experience with log analysis, SIEM platforms, and coding. Practice common interview questions and think of examples that highlight your initiative and attention to detail.
✨Tip Number 4
Apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, you’ll find all the latest job openings there, so keep checking back and don’t miss out on your dream role at Police Digital Service!
We think you need these skills to ace NMC Cyber Security Detection Engineer in Preston
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the NMC Cyber Security Detection Engineer role. Highlight your experience with SIEM platforms, log analysis, and any relevant scripting skills. We want to see how your background aligns with what we're looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about cyber security and how your skills can help us at Police Digital Service. Keep it concise but impactful – we love a good story!
Show Off Your Technical Skills: In your application, don’t forget to showcase your technical skills, especially in log source configuration and custom tooling. Mention any experience with APIs or coding languages like PowerShell and Python. We’re keen to see what you can bring to the table!
Apply Through Our Website: We encourage you to apply through our website for a smoother process. It helps us keep track of your application and ensures you get all the updates. Plus, it’s super easy – just follow the prompts and you’ll be set!
How to prepare for a job interview at Police Digital Services
✨Know Your SIEM Inside Out
Make sure you brush up on your knowledge of Security Information and Event Management (SIEM) platforms. Be ready to discuss your experience with log analysis, data normalisation, and how you've implemented detection rules in past roles. This will show that you’re not just familiar with the tools but can also leverage them effectively.
✨Stay Updated on Cyber Threats
Familiarise yourself with the current threat landscape and the tactics, techniques, and procedures (TTPs) used by cyber adversaries. Being able to discuss recent incidents or trends will demonstrate your proactive approach and genuine interest in the field.
✨Showcase Your Coding Skills
Since practical experience in scripting is essential, be prepared to talk about your projects involving PowerShell or Python. If possible, bring examples of custom tooling you've developed or automation scripts you've created. This will highlight your technical prowess and problem-solving abilities.
✨Communicate Clearly and Confidently
Good communication skills are key, especially when discussing complex technical subjects. Practice explaining your past experiences and technical concepts in a clear and concise manner. This will help you connect with the interviewers and convey your ideas effectively.
