Lead Detection & Automation Strategy in a High-Impact Cyber Role

We're working with a forward-thinking organisation that’s investing heavily in its cyber capabilities. As the Detection Engineering & SOAR Lead, you’ll take ownership of detection engineering, threat hunting strategy, and SOAR operations in a modern, capability-driven SOC environment.

This role gives you real influence and autonomy to drive security outcomes, implement new tech, and collaborate with a high-performing team focused on continuous improvement.

What You’ll Be Doing:

Develop and lead threat detection strategy and engineering roadmap

Fine-tune and create detection rules, data models, and UEBA logic

Design and implement SOAR playbooks and automation pipelines

Collaborate with SOC analysts to evolve threat hunting processes

Translate threat intelligence into actionable detection logic

Drive integration of new tools and data sources into the SOC stack

Act as a technical mentor and escalation point within the team

About You:

Solid hands-on experience in threat detection and security engineering

Proven background working with SOAR tools and automation workflows

Comfortable writing and tuning detection rules (SIEM, UEBA, etc.)

Ability to work across cloud and on-prem environments (Windows/*nix)

Strong understanding of the threat landscape and attacker behaviours

Excellent stakeholder communication and leadership skills

Motivated, proactive, and passionate about solving security challenges

Bonus Points If You Have:

Experience with Splunk, Sentinel, Elastic, or similar platforms

Python or scripting experience for automation

Security certifications like GSEC, GCIA, GPYC, or RHCE

Exposure to MSSP or service provider environments

Why Apply?

High-trust role with end-to-end ownership of detection and automation

Strong culture of innovation, collaboration, and professional growth

No red tape – just smart people solving interesting problems