An exciting opportunity has arisen for a Threat Detection Engineer to join a well-established biotech company using large-scale genetic data and AI to predict disease risk and advance precision healthcare.

As a Threat Detection Engineer, you will be responsible for developing and enhancing threat detection capabilities within a modern cloud-first setting.

This role offers hybrid / remote working options, a salary range of £60,000 - £80,000 and benefits.

You will be responsible for:



* Designing and implementing threat-led detection logic informed by threat intelligence and hunting activities.


* Developing innovative analytical techniques to identify incidents effectively.


* Collaborating with an outsourced SOC to maintain, tune, and optimise detection catalogues.


* Creating and refining DLP, Insider Risk Management, and other security rules using cloud-native tools.


* Monitoring and ensuring high-quality service delivery from external SOC providers.


* Automating reporting on security performance and operational metrics.


* Partnering with technology teams to ensure adequate monitoring across cloud platforms, SaaS, and internal systems.


* Documenting security processes, tool configurations, and contributing to service delivery documentation.


* Supporting colleagues with ISO 27001 compliance and KQL-related tasks.


What we are looking for:



* Previously worked as an SOC Analyst, Threat Detection Engineer or in a similar role.


* Must have strong expertise in KQL.


* Hands-on experience with Microsoft Sentinel and Defender (Endpoint, Office 365).


* Familiarity with Microsoft Entra ID, including Identity Governance.


* Experience with Microsoft Purview, particularly DLP and data protection tools.


* Exposure to cloud-native logging in Azure and Kubernetes environments.


* Understanding of "detection as code" or "everything as code" approaches, including CI/CD pipelines.


* Experience working with or alongside MSP SOC teams.


* Awareness of Agile methodologies and ways of working.


* Knowledge of attacker TTPs, threat modelling, and cyber security frameworks.


* Understanding of statistics, data science, or AI/ML as applied to security.


* Awareness of ISO 27001 standards.


* Relevant cyber security certifications (e.g., MS-500, AZ-500, SC-200, SC-300, SC-400, Security+, GSOC, CCSK).


This is a rare chance to contribute to meaningful cyber security work in a role where your expertise will directly influence how threats are detected and mitigated at scale.

Relevant job titles: Threat Detection Engineer, Cyber Threat Engineer, Detection & Response Engineer, Security Detection Engineer

Important Information: We endeavour to process your personal data in a fair and transparent manner.

In applying for this role, Additional Resources will be acting in your best interest and may contact you in relation to the role, either by email, phone, or text message.

For more information see our Privacy Policy on our website.

It is important you are aware of your individual rights and the provisions the company has put in place to protect your data.

If you would like further information on the policy or GDPR please contact us.

Additional Resources Ltd is an Employment Business and an Employment Agency as defined within The Conduct of Employment Agencies & Employment Businesses Regulations 2003.

Keywords: Cyber Threat Engineer,?Detection & Response Engineer,?SIEM Engineer,?Security Detection Engineer,?Threat Hunting Engineer,?Security Automation Engineer,?SOC Engineer,?Incident Response Engineer,?Cloud Security Engineer,?Network Security Engineer,?Cybersecurity Analyst (Threat Focus),?Threat Intelligence Analyst,?Security Monitoring Engineer,?Endpoint Security Engineer,?Cyber Defense Engineer