RiverSafe

About the Company

We deliver services in Cybersecurity, Application Security and DevOps and are trusted by some of the world’s leading brands to maximise the value of their security investments and to improve the efficiency of their software delivery process.

Our expertise and experience in technical delivery across multiple industry sectors is what sets us apart, along with our flexible and tailored partnership approach to ensure our customers’ success, putting security at the heart of everything we do.

Listed Jobs

Company Name

RiverSafe

Job Title

SIEM Detection Engineer - Hybrid

Job Description

Job title SIEM Detection Engineer – Hybrid Role Summary Design, deploy, and refine advanced detection capabilities within Microsoft Sentinel and Azure SIEM. Translate threat intel into detection logic, manage integrations, mentor junior staff, and collaborate closely with incident response and threat intelligence teams to enhance overall security posture. Expectations - Deliver high‑quality detection rules and analytics on schedule. - Continuously optimize detection accuracy and performance. - Maintain up‑to‑date knowledge of industry threat trends and Microsoft product updates. - Share expertise, set best‑practice standards, and guide less experienced engineers. Key Responsibilities - Create and tune SIEM detection rules, analytic queries, and playbooks in Microsoft Sentinel. - Migrate and integrate legacy content to Azure/Sentinel environments. - Turn threat intelligence feeds into actionable detection logic. - Collaborate with IR and threat intel teams to validate and improve detections. - Conduct code reviews, mentorship sessions, and documentation for SIEM improvements. Required Skills - Proven experience developing SIEM content and threat detection rules. - Deep knowledge of Microsoft Sentinel, Azure ecosystem, and Azure Logic Apps. - Strong understanding of MITRE ATT&CK framework, attacker TTPs, and security engineering principles. - Excellent analytical, problem‑solving, and communication skills. Required Education & Certifications - Bachelor’s degree in Computer Science, Information Security, or related field preferred. - Relevant certifications: Microsoft Certified: Azure Security Engineer Associate or Microsoft Certified: Security, Compliance and Identity Fundamentals; SIEM or Cybersecurity certifications are a plus.

London, United kingdom

Hybrid

05-11-2025

Company Name

RiverSafe

Job Title

SIEM Detection Engineer - Remote

Job Description

Job title: SIEM Detection Engineer – Remote Role Summary: Design, implement, and tune advanced detection rules and analytics in Microsoft Sentinel & Azure SIEM. Translate threat intelligence into actionable detection logic, lead SIEM enhancements, integrations, and content migration, mentor junior engineers, and collaborate with Incident Response and threat intel teams to refine detections. Expectations: Deliver high‑accuracy detection rules; integrate new data sources; mentor junior staff; keep detection logic aligned with evolving threat landscape; lead content migrations and use Azure Logic Apps for automation. Key Responsibilities: - Design and fine‑tune detection rules and analytics in Microsoft Sentinel. - Convert threat intelligence into functional detection logic. - Lead SIEM enhancements, integrations, and content migration projects. - Mentor junior engineers and establish best‑practice standards. - Collaborate with IR and threat intel teams to continuously improve detections. - Deploy and configure Azure Logic Apps for detection automation. Required Skills: - Proven experience in SIEM content development and threat detection. - Deep expertise with Microsoft Sentinel, Azure platform, and Azure Logic Apps. - Strong knowledge of MITRE ATT&CK framework, attacker TTPs, and core security principles. - Excellent analytical and problem‑solving abilities. Required Education & Certifications: Not specified.

London, United kingdom

Hybrid

05-12-2025