Senior MXDR Security Engineer - SIEM, MITRE ATT&CK

Summary: Senior MXDR Security Engineer position available at a leading investment bank in London, focusing on the development and refinement of security monitoring use cases and rulesets. The role requires hands-on experience with MXDR/SIEM tools and a strong understanding of threat detection practices. The position is inside IR35 and requires three days a week on-site work. Candidates should possess excellent communication skills and a passion for continuous improvement in cyber defense.

Key Responsibilities:

• Development of use cases and rulesets across multiple log sources.
• Performing regular rule refinement sessions to address rule logic issues and false positives.
• Output activities from refinement sessions such as development and/or refinement of rules and workbooks.
• Optimisation activities such as log utilisation tracking and refinement.
• MITRE ATT&CK heat map coverage.
• Working with internal ITC teams and the Customer to identify any onboarding or offboarding projects of appropriate log sources necessary for effective security monitoring.
• Identification of opportunities for additional monitoring.
• Workbook creation for data visualisation.
• Attendance at Service Review Meetings.
• Maintenance of Service Documentation such as LLD (co-management activity).

Key Skills:

• Hands-on MXDR/SIEM experience (e.g., Sentinel, Splunk, QRadar)
• Strong telemetry parsing/enrichment skills
• Solid grasp of MITRE ATT&CK & threat-detection best practices
• Clear communicator with a customer-focused mindset
• Passion for continuous improvement in cyber defence

Salary (Rate): £650 per day

City: London

Country: United Kingdom

Working Arrangements: on-site

IR35 Status: inside IR35

Seniority Level: Senior

Industry: IT