We’re looking for a Threat Detection Engineer who thrives on innovation and technical ownership. This role is not a traditional SOC position, you’ll focus on building high-impact detection capabilities, shaping how security protects sensitive genomic and AI-driven data at scale.
This role offers hybrid / remote working options, a salary range of £60,000 - £80,000 and benefits.
Why This Role is Exciting
High autonomy: Lead projects from idea to deployment
Innovation-driven: Develop cutting-edge detections beyond standard SIEM rules
Collaborative: Work closely with internal teams and an outsourced SOC partner
Mission-focused: Protect critical healthcare data that supports precision medicine
Key Responsibilities
Design and develop threat-led detections using threat intelligence and threat-hunting outputs
Create novel analytic techniques for incident detection
Collaborate with an MSP SOC to maintain and tune the detection catalogue
Build automated reporting dashboards using Microsoft Sentinel workbooks
Support security initiatives including ISO 27001 activities and KQL-based tasks
Ensure monitoring coverage across cloud platforms, SaaS apps, and internal systems
Contribute to documentation of processes, tools, and detection logic
What You’ll Bring
Must-Have Skills & Experience:
Previously worked as a Threat Detection Engineer or in a similar role.
Strong proficiency in KQL and hands-on experience with Microsoft Sentinel
Familiarity with Microsoft Defender tools (Endpoint & O365)
Exposure to Azure cloud logging and Kubernetes environments
Knowledge of attacker TTPs and MITRE ATT&CK frameworks
Proactive, collaborative, and innovative mindset
Desirable / Nice-to-Have:
Experience with Python, Terraform, or CI/CD pipelines
Familiarity with Microsoft Purview, Entra ID, DLP, or Insider Risk tools
Understanding of ISO 27001, Agile ways of working
Knowledge of statistics, data science, or AI/ML applied to cybersecurity
Relevant certifications (MS-500, AZ-500, SC-series, Security+, GSOC, CCSK)
Perks & Benefits
Hybrid / remote working options
Flexible benefits package
Opportunity to innovate and make a real impact in threat detection
Work in a small, fast-paced, highly collaborative team
Contribute to advancing precision healthcare using genomic data and AI
Ready to build next-generation threat detection and protect life-changing data Apply today!
Important Information: We endeavour to process your personal data in a fair and transparent manner. In applying for this role, Additional Resources will be acting in your best interest and may contact you in relation to the role, either by email, phone, or text message. For more information see our Privacy Policy on our website. It is important you are aware of your individual rights and the provisions the company has put in place to protect your data. If you would like further information on the policy or GDPR please contact us.
Additional Resources Ltd is an Employment Business and an Employment Agency as defined within The Conduct of Employment Agencies & Employment Businesses Regulations 2003.
Keywords: Cyber Threat Engineer, Detection & Response Engineer, SIEM Engineer, Security Detection Engineer,T hreat Hunting Engineer, Security Automation Engineer, SOC Engineer, Incident Response Engineer, Cloud Security Engineer, Network Security Engineer, Cybersecurity Analyst (Threat Focus), Threat Intelligence Analyst, Security Monitoring Engineer, Endpoint Security Engineer, Cyber Defense Engineer
Salary description
£60000.00 - £80000.00 per year