Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Develop and deploy SIEM detection rules to combat cyber threats.
- Company: Join the Police Digital Service, a leader in tech for UK policing.
- Benefits: Enjoy 28 days annual leave, flexible hours, and a great pension scheme.
- Why this job: Make a real difference in public safety while working with cutting-edge technology.
- Qualifications: Experience in log analysis, SIEM platforms, and software development required.
- Other info: Hybrid working model with opportunities for career growth and community involvement.
The predicted salary is between 40000 - 60000 £ per year.
Join Police Digital Service as NMC Cyber Security Detection Engineer x 2. Full time Permanent. Salary starting at £50,000.
About Police Digital Service
To protect people from harm in our rapidly changing world, police services must not only keep up with technology and business changes but develop capabilities and ways of working that will enable them to adapt to and deal with the complexity of modern criminality. Police Digital Service strives to be the go-to partner for technology developments and programmes across UK policing. Our team provides technical advice and delivers services to help policing and law enforcement organisations across the UK prioritise and focus on technology efforts. Our vision is to support UK policing to keep people safe, get more from technology investments and make better use of public money, and we're always on the lookout for great talent to help us achieve this.
The National Management Centre (NMC) is part of Police Digital Service and provides visibility and control of information risks for policing. It supports the 24x7x365 nature of police operations, providing a threat detection and response capability for digital services before, during and after cyber-attacks, enabling stakeholders to understand and proactively manage risk across the technology estate at both the national and force level.
Key Responsibilities
- Development, maintenance, and deployment of SIEM detection rules for complex technical environments.
- Working alongside wider NMC functions, maintain knowledge of the threat landscape and TTPs employed by threat actors.
- Work across wider NMC functions to ensure detections are relevant and effective.
- Creation of custom solutions using both low-code and traditional development approaches.
- Optimization of log collection to align with detection requirements.
- Maintain documentation for detection rules to be used by analysts.
- Scoping, testing and implementing new SIEM data connectors.
- Working with wider NMC teams, contributing to Continual Service Improvement and innovations.
- Support with the creation of automation and analyst playbooks.
What you need to succeed in the role
Essential:
- Experience with log analysis and correlation of large datasets from multiple data sources to identify and investigate attack patterns.
- Experience of supporting and developing SIEM platforms in the context of a Security Operations Centre.
- Experience of log source configuration and parsing, as part of a SIEM implementation, including experience of data normalisation using RegEx.
- Practical experience in the creation, testing, implementation, and support of custom tooling to support Security Operations.
- Experience working with APIs.
- Practical experience in software development and scripting, preferably PowerShell and Python.
- Initiative and the ability to produce quality work without close supervision.
- Good written and verbal communication skills, particularly in relation to technical subjects.
- Attention to detail and genuine passion for maintaining high quality software configuration.
- Broad cyber security awareness and practical experience.
- Experience working with code repositories and CI/CD.
- Ability to acquire SC and NPPV3 level clearances.
Desirable:
- Certifications that demonstrate a combination of offensive and defensive knowledge - PNPT / OSCP / BTL2 / GCFAPractical experience in software development and scripting, preferably PowerShell and Python.
- Previous public sector experience.
- Previous SOC or security engineering experience.
- Previous experience monitoring the security of cloud technologies.
- Experience with Microsoft Power Apps / Power Automate and Azure Logic Apps.
Why Join us?
- Balance is important and we want you to take time off to recharge - we offer 28 days' annual leave plus bank holidays, rising to 30 days after 5 years of service. Holiday Purchase also available.
- Flexible working hours - We trust you to do your job and we appreciate that life doesn't always fit around a 9 to 5 workday. We operate core hours of 8 to 6, Monday to Friday (37hr week).
- We care about your well-being - we have an EAP that offers not just welfare benefits but also retail discounts.
- Plan for the future - we offer an excellent pension scheme and life assurance cover.
- Put your mind at rest regarding your health - offering remote GP, mental health and physiotherapy appointments via video consultation.
- Family - Enhanced maternity and paternity pay along with a flexible return to work.
- Community - one paid day off per year for volunteering.
Diversity, equity and inclusion
We are committed to equal opportunity for all and will not discriminate on any grounds. We encourage applications from people from the widest possible span of experience. We particularly welcome applications from Black, Asian and Minority Ethnic (BAME) candidates and people with disabilities.
Working Arrangements
At the NMC, you will benefit from hybrid working, getting the advantages of both face-to-face team engagement and home working. NMC employees have the opportunity to work in our modern office environment for in-person collaboration, however you will also get the opportunity to work from home 2 days a week. All applicants must be eligible for NPPV3 and SC clearances. Successful applicants will require NPPV3 clearance to have been approved before starting with PDS.
NMC Cyber Security Detection Engineer in Skelmersdale employer: Police Digital Services
Contact Detail:
Police Digital Services Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land NMC Cyber Security Detection Engineer in Skelmersdale
✨Tip Number 1
Network like a pro! Reach out to folks in the cyber security field, especially those connected to Police Digital Service. Attend industry events or webinars, and don’t be shy about sliding into DMs on LinkedIn. You never know who might have the inside scoop on job openings!
✨Tip Number 2
Show off your skills! Create a portfolio showcasing your projects, especially any SIEM detection rules or custom tooling you've developed. This is your chance to demonstrate your expertise and passion for cyber security, making you stand out from the crowd.
✨Tip Number 3
Prepare for interviews by brushing up on common technical questions related to log analysis and SIEM platforms. Practice explaining your thought process clearly and confidently. Remember, they want to see how you tackle problems, so think aloud during your responses!
✨Tip Number 4
Apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you’re genuinely interested in joining the Police Digital Service team. Don’t miss out on this opportunity!
We think you need these skills to ace NMC Cyber Security Detection Engineer in Skelmersdale
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the NMC Cyber Security Detection Engineer role. Highlight your experience with log analysis, SIEM platforms, and any relevant scripting skills. We want to see how your background aligns with what we're looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about cyber security and how your skills can help us at Police Digital Service. Keep it concise but impactful – we love a good story!
Show Off Your Technical Skills: In your application, don’t shy away from showcasing your technical expertise. Mention specific tools, languages, or projects that demonstrate your capabilities in log collection, data normalisation, and custom tooling. We’re keen to see what you can bring to the table!
Apply Through Our Website: We encourage you to apply through our website for a smoother process. It’s the best way to ensure your application gets into the right hands. Plus, you’ll find all the details you need about the role and our team!
How to prepare for a job interview at Police Digital Services
✨Know Your SIEM Inside Out
Make sure you’re well-versed in the specifics of SIEM platforms, especially in the context of a Security Operations Centre. Brush up on your experience with log analysis and correlation, as well as any custom tooling you've developed. Being able to discuss your hands-on experience confidently will impress the interviewers.
✨Stay Updated on Cyber Threats
Familiarise yourself with the current threat landscape and the tactics, techniques, and procedures (TTPs) used by threat actors. This knowledge will not only help you answer questions but also demonstrate your proactive approach to cyber security, which is crucial for the role.
✨Showcase Your Coding Skills
Be prepared to discuss your practical experience with scripting languages like PowerShell and Python. If you have examples of projects where you’ve implemented automation or created custom solutions, share those! It’s a great way to show your technical prowess and problem-solving skills.
✨Communicate Clearly and Effectively
Since good written and verbal communication skills are essential, practice explaining complex technical concepts in simple terms. This will not only help you during the interview but also reflect your ability to work collaboratively with non-technical stakeholders in the future.
