SENIOR THREAT DETECTION ENGINEER

SENIOR THREAT DETECTION ENGINEER

Fully Remote

Up to £100,000 + Excellent Staff Bens + Share Scheme

SECUREhas strategically partnered with a multi-award-winning, software-based organisation at the forefront of pre-emptive exposure management. As a market leader backed by significant venture funding, they expand offensive security capabilities, specifically around Threat Detection Engineering, in their mission of helping organisations understand how they could be compromised. Success in this position will enable the business to build Detection Strategies that Continuously Identify Real-World Exploitation, helping Fortune 500 Companies & Critical Infrastructure Providers outrun Real-World Threats in Real-Time

Role Overview:

We\’re looking to speak with an ambitious Senior Threat Detection Engineer to join us and expand our Client\’s Offensive Security Capabilities, specifically around Threat Detection Engineering. You\’ll own the Design, Implementation & Evolution of Detection Strategies that Identify Real-World Exploitation & Adversarial Behaviour across their Honeypot Network. Ideally based in the UK, you don\’t need to tick every box – if you\’re motivated to make an impact, read on.

Skills & Experience of Threat Detection Engineer will include:

• Strong Experience of working with Security Telemetry at Scale, including Detection Engineering, Threat Research, SOC, IR or Offensive Security roles
• 3 Years in Threat Detection, Threat Research or Threat Intelligence Engineering role with Demonstrable Ownership of Production Detections
• Hands-On Experience working with Honeypot or Deception Data, Internet-Scale Telemetry or High-Noise Datasets
• Strong Background in Threat & Vulnerability Intelligence including Vulnerability Lifecycles, Exploitation Timelines, Threat Actor Tradecraft & Frameworks such as MITRE ATT&CK
• Strong Python Skills, with experience Building Detection Tooling, Parsers, Enrichment Pipelines or Internal Analysis Frameworks
• Deep Familiarity with OpenSearch / ELK-Style Stacks including Querying, Aggregations, Pipelines & Detection Tuning
• Experience working in an Early-Stage B2B Start-Up Focusing on Enterprise Clients

Responsibilities of Threat Detection Engineer includes:

• Engineer High-Fidelity Detections for both N-Day & True 0-Day Exploitation by Translating Attacker Tradecraft, Payloads & Kill-Chain Behaviours into Durable Detection Logic
• Continuously Improve Signal Quality by Reducing Noise, Validating Detections Against Live Attacker Activity & Tuning for Scale across Millions of Events Per Day
• Build & Operate Detection Pipelines that Ingest, Normalise & Correlate Honeypot Telemetry, Vulnerability Intelligence & External Threat Data in near Real Time
• Lead Rapid-Reaction Detection Efforts for Emerging Threats, working Cross-Functionally with Engineering, Research & Go-To-Market Teams to turn exploitation into Actionable Customer Insight quickly
• Operationalise Threat Intelligence by Converting External Research, Advisories & POCs into Production-Grade Detections & Internal Knowledge Artifacts
• Author Original Detection Research & Threat Reports, Documenting Adversary Behaviours, Exploitation Trends & Detection Methodology for Both Internal Stakeholders & External Publication
• Mentor & Influence others by Setting Detection Standards, Reviewing Logic & Helping Shape How the Organisation approaches Threat Detection at Scale

AtSECURE,we value Attitude & Aptitude over Certifications. If you possess the drive and relevant experience to deliver tangible results aligned with our clients needs, reach out. We embraceDE&I and Welcome Applications from Underrepresented Groups, Minorities, Women in Cybersecurity, Neurodiverse Individuals, LGBTQ+ Community Members, Veterans, & those from Diverse Socioeconomic Backgrounds.