Peaple Talent have partnered with an MSP client in Bristol looking to recruit a Cyber Security Engineer. This is a role focused on Security Detection & Automation.Our client is looking for someone who is passionate about threat hunting, adversary tactics, and building scalable, automated defences. This is a chance to have a tangible impact in a rapidly growing team that secures the digital infrastructure of hundreds of organisations worldwide.In this role, you’ll leverage your expertise in detection engineering, incident response, and attacker methodologies to design, develop, and optimise advanced security detections and automations within the Microsoft ecosystem. You’ll be working extensively with Microsoft Sentinel, Defender XDR, and KQL, while also integrating other security technologies such as firewalls, email filtering solutions, and web proxies.Our client is seeking someone who thrives in a collaborative, forward-thinking environment, has strong scripting skills in Python, PowerShell, and KQL, and is comfortable building integrations with APIs and case management systems.Key Responsibilities:Develop, refine, and maintain scripts, functions, and LogicApps that power integrations within our clients’ SOC platform.Design and manage security alerts and incident handling process.Lead the onboarding and migration of log sources into Microsoft Sentinel SIEM.Stay informed about the evolving cyber threat landscape and apply insights to strengthen defences.Track and evaluate the effect of new content deployments on SIEM stability and performance.Analyse emerging threats and develop new detection logic and rule sets in response.Configure Microsoft Sentinel environments for new customers during onboarding.Collaborate with internal teams, acting as the SME on security-related topics.Identify opportunities to streamline manual analyst workflows, delivering full automation wherever possible.Communicate effectively with both technical and non-technical stakeholders, maintaining a positive and collaborative approach.Build integrations with third-party technologies using APIs adopted by our client and their customers.Actively hunt for threats and signs of compromise across customer environments using available tools.Apply hands-on experience with SOAR platforms, Azure Logic Aps, and Azure Functions (Python) to improve automation and detection capabilities.Produce clear, structured documentation of processes and procedures.Ensure compliance with internal policies, processes, and industry best practices.Design and document playbooks and runbooks to support new detections and incident response activities.Provide guidance, coaching, and mentoring to colleagues across the team.Key Experience Required:Technical skills across Microsoft Threat Protection products and Azure security.Experience in understanding the MITRE ATT&CK framework or any other security defence frameworks.Experience with industry recognised SIEM solutions preferably with Microsoft Sentinel.Experience with Query Languages preferably KQL.Microsoft Certs: MS-500, AZ-500, SC-100, SC-200, SC-300, SC-401.We are an equal opportunities employer and welcome applications from all qualified candidates. #J-18808-Ljbffr