SIEM Detection Engineer - Remote
Posted Today by RiverSafe
Negotiable
Undetermined
Remote
London Area, United Kingdom
Summary: The role of SIEM Detection Engineer involves enhancing Microsoft Sentinel and Azure SIEM threat detection capabilities through the design and implementation of advanced detection rules. The engineer will translate threat intelligence into actionable detection logic, lead SIEM enhancements, and mentor junior engineers. Collaboration with incident response and threat intelligence teams is essential to refine detection strategies.
Key Responsibilities:
- Design, implement & tune advanced detection rules and analytics.
- Translate threat intelligence into actionable detection logic.
- Lead SIEM enhancements, integrations & content migration.
- Mentor junior engineers and drive best practices.
- Collaborate with IR & threat intel teams to refine detections.
Key Skills:
- Proven experience in SIEM content development & threat detection.
- Strong expertise with Microsoft Sentinel, Azure & Logic Apps.
- Deep knowledge of MITRE ATT&CK, attacker TTPs & security principles.
- Strong analytical & problem-solving skills.
Salary (Rate): undetermined
City: London Area
Country: United Kingdom
Working Arrangements: remote
IR35 Status: undetermined
Seniority Level: undetermined
Industry: IT
We’re looking for a hands-on technical expert to join our team and enhance our Microsoft Sentinel & Azure SIEM threat detection capabilities.
The Role:
- Design, implement & tune advanced detection rules and analytics.
- Translate threat intelligence into actionable detection logic.
- Lead SIEM enhancements, integrations & content migration.
- Mentor junior engineers and drive best practices.
- Collaborate with IR & threat intel teams to refine detections.
Skills:
- Proven experience in SIEM content development & threat detection.
- Strong expertise with Microsoft Sentinel, Azure & Logic Apps.
- Deep knowledge of MITRE ATT&CK, attacker TTPs & security principles.
- Strong analytical & problem-solving skills.