Threat Detection Engineer

Do you have a passion for hunting malicious activities in the background of business as usual and figuring out how to detect and respond to new threats?

Millennium SOC is going through a transformation, we are looking for an experienced Threat Detection Engineer to drive our best?in?class posture. This is a highly technical role, and a successful candidate would have demonstrable knowledge and experience in a range of technologies both business and security in a fast?paced innovative organisation.

Principal Responsibilities

• Threat Hunting The ability to leverage multiple data sources to identify modern evolving threats and develop new detection and response approaches.
• Detection Engineering Creation and operation of high?fidelity detections mechanisms that drive efficient, effective and repeatable response.
• Playbook Creation Own, operate and automate detection and response workflows, that enable the team to focus on strategic objectives.
• Lead Information Security response activities for the firm.
• Team Player Ability to work across business and technology teams to deliver positive outcomes across the firm.
• Technical Prowess Comfortable explaining complex technology and information security related concepts to a wide range of stakeholders.
• Security Ambassador Enforce security policies and procedures by administering and monitoring appropriate systems, events and answering stakeholder queries.
• Threat Intel Actively monitor new and emerging security and privacy related technologies, trends, issues, and solutions and assess their applicability to Millennium key business initiatives and business strategies.
• Operational Excellence Ensure Millennium Information Security capabilities remain fit for purpose and evolve to meet the changing threat landscape.

Qualifications/Skills Required

• Bachelor or masters degree in computer science or cyber security with strong IT background or equivalent demonstrable experience.
• 3 years experience working in a security engineering role, financial industry experience preferred.
• Experience in creating detections in modern query languages (KQL, SQL, SPL).
• Possesses security certifications (Security+, OSCP, CISSP, CEH, GCIA, GCIH).
• Experience with modern security tooling across security domains; network, endpoint, data, identity and cloud.
• Experience in standard enterprise technology stack, Active Directory, Entra, Group Policy, Intune, DNS, TCP/IP, PKI, Microsoft 365, Windows, Linux, MacOS, etc.
• Ability to handle sensitive and/or confidential materials with appropriate discretion.
• Required scripting, development and automation skills using PowerShell or Python and proficient development tools.
• Experience in OSINT, Threat hunting and analysing malicious emails.
• Able to prioritize in a fast moving, high pressure, constantly changing environment.

#J-18808-Ljbffr