Enable job alerts via email!
Microsoft Security (Sentinel) Automation & Detection Engineer
Hays.
Cambridge
On-site
GBP 50,000 - 90,000
Full time
Boost your interview chances
Create a job specific, tailored resume for higher success rate.
Job summary
An innovative multinational semiconductor and software design company is on the lookout for a Security Automation & Detection Engineer. In this dynamic role, you'll leverage your expertise in security operations and automation to enhance the efficiency of Cyber Defence Operations. With a focus on building robust SIEM detections and automating workflows, you'll work closely with analysts and third-party vendors to ensure seamless integration and operational excellence. This exciting opportunity offers a hybrid work environment, allowing you to contribute to cutting-edge security solutions while enjoying flexibility. If you're passionate about cybersecurity and eager to make a significant impact, this role is for you!
Qualifications
- 3+ years in cybersecurity with a focus on security operations and automation.
- Proficient in integrating security tools and automating workflows.
Responsibilities
- Build security automations and SIEM detections to enhance Cyber Defence Operations.
- Collaborate to streamline incident response and threat hunting processes.
Skills
Tools
Job description
A multinational semiconductor and software design company is seeking a Security Automation & Detection Engineer for a 6-month contract to start ASAP, based in Cambridge (Hybrid), Inside IR35.
Role Overview:
Utilising knowledge of security operations, incident response, and detection engineering, you will be responsible for the delivery of SIEM detections and security automations.
The successful candidate will be proficient in automation and orchestration tools (e.g., SOAR platforms, scripting languages like Python, PowerShell) and have experience with integrating security tools (e.g., SIEM, EDR, firewalls) APIs, and Case Management tools for data enrichment.
Responsibilities:
- Build security automations, logging, and SIEM detections to improve the Cyber Defence Operation's efficiency, scalability, and incident response capabilities.
- Design, implement, and maintain automated workflows and playbooks to streamline CDO operations, including incident response, threat hunting, cyber threat intelligence, and vulnerability management.
- Collaborate with Cyber Defence Operation analysts to identify repetitive tasks and automate them to improve operational efficiency.
- Collaborate with Threat Intelligence, Incident Response, and Attack Surface Management to build and tune robust SIEM detections for both proactive and reactive response actions.
- Continuously evaluate automation solutions for performance, reliability, and scalability, making improvements as necessary.
- Collaborate with third-party vendors and service providers to leverage automation opportunities and ensure successful integrations.
- Lead technical migration of log sources into Microsoft Sentinel SIEM.
Required Skills and Experience:
- Demonstrated ability in cybersecurity, with at least 3 years in a technical role in security operations and/or security software development.
- Solid understanding of security operations, automation standard processes, detection engineering, and SIEM management.
- Experience with cloud security tools and platforms (e.g., Azure, AWS, Google Cloud) and their integration into SOC operations.
- Vendor-specific certifications for Security orchestration, automation, and response (SOAR) platforms (e.g., Sentinel SOAR, Splunk SOAR, Palo Alto Cortex XSOAR).
- Experience contributing to large-scale, sprint-based security automation and detection engineering projects.
Desirable Skills and Experience:
- Ability to develop and implement long-term automation strategies aligned with security operation objectives.
- Ability to translate technical concepts into clear, actionable insights for technical and non-technical partners.
- Meticulous focus on ensuring accuracy, reliability, and security in automation workflows.
- Consistent record of implementing automation and integration solutions in a SOC or similar environment.
#4661481 - Karl Randall
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
Similar jobs
DV Cleared Security / DevSecOps Engineer
iO Associates - UK/EU
Cambridge
On-site
GBP 60.000 - 80.000
Microsoft Security (Sentinel) Automation & Detection Engineer
JR United Kingdom
Cambridge
Hybrid
GBP 60.000 - 80.000
Microsoft Security (Sentinel) Automation & Detection Engineer
Hays
Cambridge
Hybrid
GBP 50.000 - 90.000
Microsoft Security (Sentinel) Automation & Detection Engineer
ZipRecruiter
Cambridge
On-site
GBP 50.000 - 70.000
job faster
