Detection and Response Engineer

End Date

Thursday 27 November 2025

Salary Range

£70,929 - £78,810

We support flexible working – click here for more information on flexible working options

Flexible Working Options

Hybrid Working, Job Share

JOB TITLE: Detection & Response Engineer
SALARY: From £70,929 depending on experience and location
LOCATION(S): Leeds, Manchester, Bristol, London or Edinburgh
HOURS: Full time (This role will include a requirement to work as part of an on-call rota)
WORKING PATTERN: Our work style is hybrid, which involves spending at least two days per week, or 40% of our time, at our locations noted above.

JOB TITLE: Detection & Response Engineer

SALARY: From £70,929 depending on experience and location

LOCATION(S): Leeds, Manchester, Bristol, London or Edinburgh

HOURS: Full time (This role will include a requirement to work as part of an on-call rota)

WORKING PATTERN: Our work style is hybrid, which involves spending at least two days per week, or 40% of our time, at our locations noted above.

At Lloyds Banking Group, we’re moving to the next stages of our digital transformation, and it’s our job within the Chief Security Office (CSO) to ensure that we keep our customers, colleagues and assets safe from threat.

Our Cyber & Physical Defence Centre is undertaking an end-to-end modernisation to increase our ability to stay one step ahead of cyber adversaries. We pride ourselves on our innovative approach and our commitment to excellence in cyber security.

Join us as a skilled and proactive Detection and Response Engineer and play a pivotal role in safeguarding our organisation against cyber threats!

• Design, code and operationalise detection rules based on threat models and intelligence
• Fine-tune detection rules and monitor their performance
• Support detection automation and playbook editing
• Conduct proactive threat hunting and threat modelling
• Perform cyber event triage, classification, and investigation
• Complete containment, remediation, and recovery activities
• Build and maintain reporting mechanisms and documentation
• Perform root cause analysis and support post-incident reviews

• Previous experience of working in a cyber security operations context
• Ability to analyse security logs and events
• Knowledge of threat detection lifecycle, attacker behaviour and Tactics, Techniques and Procedures (TTPs)
• An understanding of advanced cyber defence concepts such as Continuous Detection/Continuous Response and Cyber Threat Intelligence, and how to apply them
• Understanding of detection logic (e.g. SIEM use cases) and detection-as-code (DaC)
• Ability to communicate technical information clearly to non-technical audiences

Like the modern Britain we serve, we’re evolving. Investing billions in our people, data and tech to transform the way we meet the ever-changing needs of our 26 million customers. We’re growing with purpose. Join us on our journey and you will too.

Our focus is to ensure we're inclusive every day, building an organisation that reflects modern society and celebrates diversity in all its forms. We want our people to feel that they belong and can be their best, regardless of background, identity or culture. We were one of the first major organisations to set goals on diversity in senior roles, create a menopause health package, and a dedicated Working with Cancer initiative. And it’s why we especially welcome applications from under-represented groups. We’re disability confident. So if you’d like reasonable adjustments to be made to our recruitment processes, just let us know

• A generous pension contribution of up to 15%
• An annual performance-related bonus
• Share schemes including free shares
• Benefits you can adapt to your lifestyle, such as discounted shopping
• X days’ holiday, with bank holidays on top
• A range of wellbeing initiatives and generous parental leave policies

Want to do amazing work, that’s interesting and makes a difference to millions of people? Join our journey.

At Lloyds Banking Group, we're driven by a clear purpose; to help Britain prosper. Across the Group, our colleagues are focused on making a difference to customers, businesses and communities. With us you'll have a key role to play in shaping the financial services of the future, whilst the scale and reach of our Group means you'll have many opportunities to learn, grow and develop.

We keep your data safe. So, we'll only ever ask you to provide confidential or sensitive information once you have formally been invited along to an interview or accepted a verbal offer to join us which is when we run our background checks. We'll always explain what we need and why, with any request coming from a trusted Lloyds Banking Group person.

We're focused on creating a values-led culture and are committed to building a workforce which reflects the diversity of the customers and communities we serve. Together we’re building a truly inclusive workplace where all of our colleagues have the opportunity to make a real difference.