Detection Engineer

Responsibilities

• Design, develop, and maintain detection rules and use cases across SIEM, EDR, and other security platforms
• Analyse logs and telemetry to identify suspicious activity and detection opportunities
• Continuously improve detection coverage based on emerging threats and intelligence
• Tune and optimise alerts to reduce false positives and improve signal quality
• Translate threat intelligence into actionable detection rules and analytics
• Develop and maintain detection-as-code practices, including version control and testing
• Map detections to frameworks such as MITRE ATT&CK to ensure comprehensive coverage
• Collaborate with Security Operations, Threat Intelligence, and Incident Response teams

Requirements

• Three years of experience in security operations, detection engineering, or threat hunting
• Strong understanding of log sources including Windows, Linux, network, and cloud
• Hands-on experience with SIEM platforms such as Splunk, Sentinel, or QRadar
• Familiarity with EDR/XDR tools like CrowdStrike, Defender, or Carbon Black

Preferred Qualifications

• Bachelor’s degree in Computer Science, Cyber Security, or a related field
• Knowledge of query languages such as KQL, SPL, or SQL
• Understanding of attacker tactics, techniques, and procedures (TTPs) and the MITRE ATT&CK framework
• Experience with scripting or automation using Python, PowerShell, or Bash
• Knowledge of cloud security monitoring in AWS, Azure, or GCP
• Relevant certifications such as CISSP, GCIA, GCDA, GSOC, or GCIH

About the Company

Haleon is a purpose-driven, world-class consumer company dedicated to putting everyday health in the hands of millions. With a trusted portfolio of brands including Sensodyne, Panadol, Advil, and Centrum, we combine deep human understanding with trusted science to deliver better everyday health with humanity.