Current jobs related to Senior Associate, Detection Engineer, Cyber Managed Services - United Kingdom - Cyber Crime

  • Security Engineer

    4 weeks ago

    United Kingdom LT Harper - Cyber Security Recruitment Full time €60,000

    Security Engineer / Cyber Software Engineer (SOAR/SIEM) Remote working available - £60k UK - must be eligible to work in the UK Security Engineer / Cyber Software Engineer (SOAR/SIEM) is required for this hands-on technical role to onboard customers to the SIEM/SOAR. The ideal candidate will have experience working for / in a Managed Service Provider /...

  • Senior Training Instructor

    24 hours ago

    United Kingdom Cyber Search Partners Full time

    Known for delivering world-class quality, the company offers bespoke training and products tailored to meet specific market needs. With a growing international footprint, the client has established regional offices across EMEA and APAC, driving expansion worldwide. Their training programs stand out for their focus on real-life scenarios, simulations, and...

  • Senior Training Instructor

    1 day ago

    United Kingdom Cyber Search Partners Full time

    Known for delivering world-class quality, the company offers bespoke training and products tailored to meet specific market needs. With a growing international footprint, the client has established regional offices across EMEA and APAC, driving expansion worldwide. Their training programs stand out for their focus on real-life scenarios, simulations, and...

  • Security Engineer

    1 month ago

    United Kingdom LT Harper - Cyber Security Recruitment Full time

    Security Engineer / Cyber Software Engineer (SOAR/SIEM)Remote working available - £60k UK - must be eligible to work in the UKSecurity Engineer / Cyber Software Engineer (SOAR/SIEM) is required for this hands-on technical role to onboard customers to the SIEM/SOAR.The ideal candidate will have experience working for / in a Managed Service Provider / MSP /...

  • Security Engineer

    4 weeks ago

    United Kingdom LT Harper - Cyber Security Recruitment Full time

    Security Engineer / Cyber Software Engineer (SOAR/SIEM)Remote working available - £60k UK - must be eligible to work in the UKSecurity Engineer / Cyber Software Engineer (SOAR/SIEM) is required for this hands-on technical role to onboard customers to the SIEM/SOAR.The ideal candidate will have experience working for / in a Managed Service Provider / MSP /...

  • Associate Science Consultant

    3 weeks ago

    United Kingdom LT Harper - Cyber Security Recruitment Full time €55,000 - €65,000

    Associate Consultant – Cyber Risk London - Hybrid A global Cyber Risk Advisory Practice with a pipeline of challenging engagements are looking for an Associate Consultant. In this Senior role, you’ll be involved in engagements from bid to delivery, you’ll work alongside like-minded colleagues at the very top of their game, and you’ll be ...

  • Associate Science Consultant

    3 weeks ago

    United Kingdom LT Harper - Cyber Security Recruitment Full time €55,000 - €65,000

    Associate Consultant – Cyber Risk London - Hybrid A global Cyber Risk Advisory Practice with a pipeline of challenging engagements are looking for an Associate Consultant. In this Senior role, you’ll be involved in engagements from bid to delivery, you’ll work alongside like-minded colleagues at the very top of their game, and you’ll be ...

  • Cyber Threat Researcher

    1 day ago

    united kingdom BlueVoyant Full time

    Cyber Threat Researcher Location: Remote in the United Kingdom, Belgium or The Netherlands Summary The Cyber Threat Researcher is a highly skilled information technology professional with a proven ability to understand the anatomy of an attack. The ideal candidate is knowledgeable in automations and detection, SOAR playbook design, and threat intelligence...

  • Cyber Threat Researcher

    3 weeks ago

    United Kingdom BlueVoyant Full time

    Cyber Threat ResearcherLocation: Remote in the United Kingdom, Belgium or The NetherlandsSummaryThe Cyber Threat Researcher is a highly skilled information technology professional with a proven ability to understand the anatomy of an attack. The ideal candidate is knowledgeable in automations and detection, SOAR playbook design, and threat intelligence...

  • Cyber Threat Researcher

    3 weeks ago

    United Kingdom BlueVoyant Full time

    Cyber Threat Researcher Location: Remote in the United Kingdom, Belgium or The Netherlands Summary The Cyber Threat Researcher is a highly skilled information technology professional with a proven ability to understand the anatomy of an attack. The ideal candidate is knowledgeable in automations and detection, SOAR playbook design, and threat...

  • Cyber Threat Researcher

    3 weeks ago

    United Kingdom BlueVoyant Full time

    Cyber Threat ResearcherLocation: Remote in the United Kingdom, Belgium or The NetherlandsSummaryThe Cyber Threat Researcher is a highly skilled information technology professional with a proven ability to understand the anatomy of an attack. The ideal candidate is knowledgeable in automations and detection, SOAR playbook design, and threat intelligence...

  • Cyber Threat Researcher

    3 weeks ago

    United Kingdom BlueVoyant Full time

    Cyber Threat Researcher Location: Remote in the United Kingdom, Belgium or The Netherlands Summary The Cyber Threat Researcher is a highly skilled information technology professional with a proven ability to understand the anatomy of an attack. The ideal candidate is knowledgeable in automations and detection, SOAR playbook design, and threat...

  • Cyber Threat Researcher

    3 weeks ago

    United Kingdom BlueVoyant Full time

    Cyber Threat Researcher Location: Remote in the United Kingdom, Belgium or The Netherlands Summary The Cyber Threat Researcher is a highly skilled information technology professional with a proven ability to understand the anatomy of an attack. The ideal candidate is knowledgeable in automations and detection, SOAR playbook design, and threat intelligence...

  • Senior Quality Engineer

    3 weeks ago

    United Kingdom Smiths Detection Full time

    Every minute of every day, in nearly every country across the globe, Smiths Detection people and technology make the world a safer place. We safeguard people, business and infrastructure with the latest innovations and screening technology for aviation, ports, borders, defense, and security across 55 countries around the globe. *We are seeking a dynamic...

  • Senior Quality Engineer

    3 weeks ago

    United Kingdom Smiths Detection Full time

    Every minute of every day, in nearly every country across the globe, Smiths Detection people and technology make the world a safer place. We safeguard people, business and infrastructure with the latest innovations and screening technology for aviation, ports, borders, defense, and security across 55 countries around the globe. *We are seeking a dynamic...

  • Senior Cyber Risk Manager

    3 weeks ago

    United Kingdom Arcus Search Full time

    Senior Cyber Risk Manager - Great role for a Senior Information Security professional! My client are a leading global Insurer looking to find an experienced Information Security and Risk professional to take up a newly created position, supporting the Underwriting team who are growing their Cyber Insurance offering. This isn't a typical Risk Management...

  • Senior Cyber Security Risk Manager

    3 weeks ago

    United Kingdom Arcus Search Full time

    Senior Cyber Risk Manager - Great role for a Senior Information Security professional! My client are a leading global Insurer looking to find an experienced Information Security and Risk professional to take up a newly created position, supporting the Underwriting team who are growing their Cyber Insurance offering. This isn't a typical Risk Management...

  • Cyber Security Project Manager

    1 month ago

    United Kingdom AGS Cyber Full time €58,000 - €90,000

    The client is looking for an experienced CYBERSECURITY project manager. It is a full-time position (Monday - Friday). You MUST be available to work EST hours , as the team is based in the US. Salary ranges from £58,000 to £90,000 (depending on skills and experience). MUST HAVES: BA/BS degree in Computer Science, MIS, Cybersecurity or equivalent 5+...

  • Cyber Security Project Manager

    4 weeks ago

    United Kingdom AGS Cyber Full time

    The client is looking for an experienced CYBERSECURITY project manager.It is a full-time position (Monday - Friday). You MUST be available to work EST hours, as the team is based in the US.Salary ranges from £58,000 to £90,000 (depending on skills and experience).MUST HAVES: BA/BS degree in Computer Science, MIS, Cybersecurity or equivalent5+ years of...

  • Cyber Security Project Manager

    1 month ago

    United Kingdom AGS Cyber Full time

    The client is looking for an experienced CYBERSECURITY project manager.It is a full-time position (Monday - Friday). You MUST be available to work EST hours, as the team is based in the US.Salary ranges from £58,000 to £90,000 (depending on skills and experience).MUST HAVES: BA/BS degree in Computer Science, MIS, Cybersecurity or equivalent5+ years of...

Senior Associate, Detection Engineer, Cyber Managed Services

4 months ago

United Kingdom Cyber Crime Full time
Senior Associate, Detection Engineer, Cyber Managed Services

Kroll As the leading independent provider of risk and financial advisory solutions, Kroll leverages our unique insights, data and technology to help clients stay ahead of complex demands. Click for more details.

View company page

In a world of disruption and increasingly complex business challenges, our professionals bring truth into focus with the Kroll Lens. Our sharp analytical skills, paired with the latest technology, allow us to give our clients clarity—not just answers—in all areas of business. We embrace diverse backgrounds and global perspectives, and we cultivate diversity by respecting, including, and valuing one another. As part ofOne team, One Kroll,you’ll contribute to a supportive and collaborative work environment that empowers you to excel.

Kroll’s Cyber Risk team works on over 3,000 cases a year, including some of the most complex and highest profile matters in the world. With experts based around the world, supported by ground-breaking technology, we help protect our client’s data, people, operations and reputation with innovative assessments, investigations and intelligence. We are the only company in the world with the expertise and resources to deliver global, end-to-end cyber risk management, supporting organizations through every step of their journey toward cyber resilience.

Clients count on us for quick and expert support in the event of and in preparation against a cyber incident; from incident response to risk assessments, and complex forensics to breach notification and ID theft remediation we help clients – of all sizes – respond with confidence.

At Kroll, your work will help deliver clarity to our clients’ most complex governance, risk, and transparency challenges. Apply now to joinOne team, One Kroll.

Role

Working within our Security Operations Centre as a Detection Engineer, the focus of this role is the implementation of security monitoring,detectionand responsetechnologies acrossKroll’sclient base. This involves developing, testing and tuningsecurity content acrossSIEM and EDRtechnologies.

RESPONSIBILITIES:

  • Develop, test and tunedetections (aka use cases, rules) for the latest threats using leading SIEM and EDR technologies.
  • Identify false positives/negatives and tune detections to increase fidelity.
  • Understand the threat landscape including new/emerging threats.
  • Develop, test and tune parsers to normalise raw logs.
  • Handle requests for new detections, determine the security value of those requests and clearly explain your decision to stakeholders.
  • Be an SME on audit logging and recommend configurations to customers.
  • Improve the computational efficiency of existing content.
  • Work with customers to build effective whitelists and blacklists.
  • Understand and master data sources across a variety of categories including Windows, Linux, IAM, EDR, NGAV, NDR, Cloud Security, Email Security, Firewalls, IPS/IDS, MFA, Web Proxies, VPNs, ZTNA, Productivity Apps and CASB.
  • Collaborate with key stakeholdersincluding Incident Response , SOC, Threat Intelligence, Offensive Security, Solutions Engineering, Platform Engineering, Project Management, Product Management, Account Management and Sales.
  • Deploy and maintain detection content at scale.
  • Documentdesigns andprocesses.

REQUIREMENTS:

  • Familiar with prevailing threats and how to mitigate them using SIEM and/or EDR.
  • Understanding of Windows Event Logs, Linux Syslogs or EDR telemetry.
  • Experience writing or tuning detections for SIEM or EDR technologies.
  • Familiarity with the Mitre ATT&CK framework.
  • Understand security principles and practices.
  • Proven capability to learn and deliver to a high standard within deadlines.
  • Strong organisational skills and an ability to appropriately prioritise tasks.
  • Ability to relay complex technical subject matter to non-technical stakeholders.
  • Demonstrable analytical and technical aptitude with focus on identifying and alleviating the root cause of a problem.
  • Proven ability to thrive and respond to frequent demands of multiple constituents, both internal and external, in a high demand, customer-centric environment.
  • Proficiency in scripting language preferred.

Location

  • London or UK Remote.

Kroll offers a flexible working, a great benefits package and excellent opportunities for career and personal development

In order to be considered for a position at Kroll, you must formally apply via careers.kroll.com

Kroll is committed to equal opportunity and diversity, and recruits people based on merit

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.

#J-18808-Ljbffr