Senior Detection and Response Engineer | Gaming | Cambridge / Hybrid 

We're partnering with a successful games company in Cambridge looking for a Security Engineer to join their Cyber team.
You will help build out a response function to handle a variety of complex security incidents, drive process improvements, and develop the tools and detection infrastructure needed to scale detection and response across all threats targeting their gaming and studio environments.

What you'll be doing:

Responding to security events, triage, perform investigation, and incident analysis
Building and improving processes and technologies used for detection and response
Automate workflows and improve identification and response time for security events
Build and optmise detection rules, runbooks and incident playbooks for new and existing detections
Developing tools and systems to gather security telemetry from cloud production environments
Leading threat hunting efforts and identifying signals to enhance security controls
Collaborating cross-functionally with engineering teams to embed security best practices
Driving continuous process improvement and helping create a culture of learning from incidents
Participating in an on-call rotation once every 4 weeks to support critical incident responseWhat we're looking for:

6+ years experinece in a Security Engineer role, with experience in security monitoring, incident response, and threat hunting in a cloud environment  
Strong background in cloud security, especially AWS services, ECS, and container environments
Proficiency with scripting or programming for security automation and detection-as-code
Knowledge of adversary tactics, techniques, and procedures (TTPs) and MITRE ATT&CK principles  
Experience with SIEM and SOAR platforms. Experiece with Red Canary or 
Strong communication skills and a proven track record of communicating with internal and external stakeholders at all levels.  
Expertise on AWS security controls and services.   
Experience leveraging coding for automation, alert enrichment and detections
Hands-on experience with data analysis, modeling, and correlation at scale  
Operating systems internals and forensics experience for macOS, Windows & Linux  
 Experience developing tools and automation using common DevOps toolsets and programming languages  
Understanding of malware functionality and persistence mechanisms  
Ability to analyze endpoint, network, and application logs for anomalous events  
Experience handling security incidents and investigating anomalies as part of a team  Package and Benefits

Up to 75K with some flexibility for the right candidate
Ideally 2 days onsite per week for the first couple of months, moving to 1-2 times per month once fully settled.
Discretionary annual performance bonus
Private Healthcare, including Dental Plan.
Minimum 6% Pension contributions.
Employee Assistance Programme & onsite Counselling.
Life Insurance.
Enhanced family leave policies from day 1.
Flexible working hours.
25 days annual leave + Bank holidays & the option to buy/sell holidays + so much more!
On call rota once every 4 weeks for critical risks. Time off in Leiu given