SOC Engineer

We are supporting a Tier 1 financial institution on a major Cyber & AI Modernisation Programme, focused on securely enabling the adoption of generative AI across the enterprise.

As part of this initiative, we are seeking a highly skilled SOC/AI Security Detection Engineer to design, build, and operate detection capabilities for AI-driven development environments, including Claude Code and other LLM-based tooling.

This is a cutting-edge role at the intersection of cybersecurity, AI, and advanced threat detection, with the opportunity to shape how large organisations defend against emerging AI-specific threats.

Key Responsibilities

• Monitor, detect, and respond to security events generated by AI-assisted development tools (eg Claude Code)
• Design and implement detection logic and rules tailored to AI/LLM workloads and usage patterns
• Build and tune use cases for AI-specific threats, including prompt injection, data leakage, model misuse, and unauthorised code execution
• Integrate AI-related telemetry into SIEM/SOAR platforms to enable Real Time monitoring and automated response
• Collaborate with engineering, security, and platform teams to ensure secure-by-design AI adoption
• Develop and optimise alerting, triage, and response playbooks for AI-driven risks
• Conduct threat modelling and analysis specific to AI/LLM environments
• Continuously improve detection coverage against evolving adversarial techniques targeting AI systems

Key Skills & Experience

• Strong experience in Cyber Detection Engineering/Security Operations/Threat Detection
• Proven ability to build and tune SIEM detection rules (eg Splunk, Sentinel, Elastic)
• Experience monitoring and analysing application, cloud, and developer activity logs
• Exposure to AI/LLM technologies (eg Claude, OpenAI, Copilot, etc.) and associated security risks
• Understanding of AI-specific threats such as:
  • Prompt injection
  • Data exfiltration via LLMs
  • Model abuse and misuse
  • Supply chain risks in AI-generated code
• Experience with cloud security (Azure/AWS/GCP) and modern engineering environments
• Strong Scripting or programming skills (eg Python)

Desirable Experience

• Experience working within financial services or other highly regulated environments
• Knowledge of AI governance, model risk, or secure AI frameworks (eg NIST AI RMF, ISO 42001)
• Familiarity with developer tooling and CI/CD pipelines
• Experience integrating AI telemetry into detection pipelines