Senior Detection And Response Engineer

We're partnering with a successful games company in Cambridge looking for a Security Engineer to join their Cyber team.

• Responding to security events, triage, perform investigation, and incident analysis
• Building and improving processes and technologies used for detection and response
• Automate workflows and improve identification and response time for security events
• Build and optmise detection rules, runbooks and incident playbooks for new and existing detections
• Developing tools and systems to gather security telemetry from cloud production environments
• Leading threat hunting efforts and identifying signals to enhance security controls
• Collaborating cross-functionally with engineering teams to embed security best practices
• Driving continuous process improvement and helping create a culture of learning from incidents
• Participating in an on‑call rotation once every 4 weeks to support critical incident response

• 6+ years experinece in a Security Engineer role, with experience in security monitoring, incident response, and threat hunting in a cloud environment
• Strong background in cloud security, especially AWS services, ECS, and container environments
• Proficiency with scripting or programming for security automation and detection-as-code
• Knowledge of adversary tactics, techniques, and procedures (TTPs) and MITRE ATT&CK principles
• Experience with SIEM and SOAR platforms. Experiece with Red Canary or
• Strong communication skills and a proven track record of communicating with internal and external stakeholders at all levels.
• Expertise on AWS security controls and services.
• Experience leveraging coding for automation, alert enrichment and detections
• Hands‑on experience with data analysis, modeling, and correlation at scale
• Operating systems internals and forensics experience for macOS, Windows & Linux
• Experience developing tools and automation using common DevOps toolsets and programming languages
• Understanding of malware functionality and persistence mechanisms
• Ability to analyze endpoint, network, and application logs for anomalous events
• Experience handling security incidents and investigating anomalies as part of a team

• Up to 90K with some flexibility for the right candidate
• Ideally, 2 days a month onsite.
• Discretionary annual performance bonus
• Private Healthcare, including Dental Plan.
• Minimum 6% Pension contributions.
• Employee Assistance Programme & onsite Counselling.
• Life Insurance.
• Enhanced family leave policies from day 1.
• Flexible working hours.
• 25 days annual leave + Bank holidays & the option to buy/sell holidays + so much more!
• On call rota once every 4 weeks for critical risks. Time off in Leiu given