SOC Detection Engineer

The Role

As a SOC Detection Engineer, you will design, develop, and maintain high-quality detection content to improve threat visibility and reduce risk across customer environments. You apply expert knowledge of attacker tactics and telemetry sources to create and manage scalable, accurate, and resilient detection rules across SOC platforms.

Operating as part of the SOC team, you support operations by expanding detection coverage, improving rule performance, and collaborating with threat intelligence, incident response, and platform engineering teams to operationalise threat insights. You also contribute to internal process improvement, customer-facing engagements, and knowledge sharing across the wider SOC team.

Key Responsibilities

• Detection Engineering and Delivery – You will develop, test, and deploy detection rules across SIEM, XDR, and other SOC platforms, supporting comprehensive, customer-aligned threat coverage.
  
  
• Lifecycle Management and Optimisation – You will monitor detection performance, tune rules to reduce false positives, and remediate logic or configuration issues caused by changing environments.
  
  
• Post-Incident Gap Analysis – You will perform detection reviews following incidents to identify missed coverage, determine root causes, and improve detection logic or supporting telemetry.
  
  Skills and Attributes
  
  
• Detection Engineering Framework experience
  
  
• Threat Hunting & Log Analysis experience
  
  
• Threat Modelling & Framework Alignment experience
  
  Desirable (but not essential)
  
  
• Data Pipeline & Telemetry Management
  
  Benefits
  
  At Claranet, we go the extra mile with our people—because we believe in building a workplace where everyone feels valued and supported. Our flexible benefits package includes:
  
  
• Pension Scheme: Employer-matched contributions to help you plan for the future.
  
  
• Comprehensive Healthcare Coverage: Access to private medical care for your peace of mind and wellbeing.
  
  
• Discounted Gym Memberships: Prioritise your fitness with exclusive rates at leading gyms.
  
  
• Personalised Wellbeing Support: App-based resources and services available 24/7
  
  
• Enhanced Annual Leave: 25 days of holiday, increasing to 27 days with service, plus bank holidays and a day off for your birthday.
  
  
• Continuous Learning & Development: Ongoing opportunities to grow your skills and advance your career.
  
  What makes us unique is Team Claranet, our internal community that supports causes close to our employees’ hearts. We offer paid charity leave, support local charities across our offices, and host annual fundraising events, all backed by a dedicated committee.
  
  We’re proud founding members of TC4RE (Technology Community for Racial Equality) working collectively to build a more diverse and inclusive tech industry.
  
  About Claranet
  
  Founded at the beginning of the dot com bubble in 1996, our CEO Charles Nasser had a light bulb moment to develop a truly customer-focused IT business. Since then, Claranet has grown from an Internet Service Provider (ISP) in the UK to being one of the leading business modernisation experts, who deliver solutions across 11+ countries.
  
  Equal Opportunities Statement
  
  Diversity, equity and inclusion are at the heart of what we value as an organisation. Claranet is an equal opportunities employer and all qualified applicants will receive consideration for employment without regard to race, religion, sex, sexual orientation, age, disability or any other status protected by law. Our recruitment team are happy to support any reasonable adjustments that are needed within the recruitment process.
  
  Ready to take the next step in your career with Claranet? Click ‘apply’ – we can’t wait to meet you!
  
  To view full job description please visit our careers page