• Planning, implementing, managing, monitoring, and upgrading security measures for the protection of the organization's data, systems, and networks. • Troubleshooting security and network problems. • Responding to all system and/or network security breaches. • Ensuring that the organization's data and infrastructure are protected by enabling the appropriate security controls. • Participating in the change management process. • Testing and identifying network and system vulnerabilities. • Daily administrative tasks, reporting, and communication with the relevant departments in the organization.

Role Description Chorus require passionate individuals for our Cyber Security Operations Centre. Our CSOC team are on a mission to become a world-class, next gen MXDR provider, delivering true value and protection to our clients. We are seeking a proactive and skilled Security Detection and Automation Engineer to join our cyber security team. If you're passionate about threat detection, attacker tradecraft, incident response, and building scalable security solutions, this role offers the opportunity to make a real impact. As a Security Detection and Automation Engineer, you will apply your expertise in security operations, detection engineering, and attacker tradecraft to design and deliver advanced integrations, detections, and automations within the Microsoft security ecosystem. You’ll be responsible for building and maintaining scalable solutions using Microsoft Sentinel, Microsoft Defender XDR, and KQL, while integrating a range of security tools including firewalls, email filtering platforms, and web proxies. Key Responsibilities - Manage, develop, and tune the scripts, functions and Logic Apps that integrate with the Chorus CSOC Platform. - Lead technical migration of log sources into Microsoft Sentinel SIEM. - Monitor the impact of deploying new content to the health and performance of the SIEM. - Set up Microsoft Sentinel for new/onboarding customers. - Look for ways to automate lengthy analyst processes and build end-to-end automation. - Work with APIs for different technology Chorus and our customers adopt, building integrations where required. - Experience with configuring and using SOAR tools, Azure Logic Apps, & Azure Functions (Python). - Compliance to policy, process, and procedure adherence. - Ability and experience to coach and mentor individuals. - Ability to create playbooks or runbooks attached to new detections and content. - Experience in creating and documenting process and procedures. - Be proactive and make use of available toolsets to look for compromises within our customers' environments. - Proficiency communicating to technical & non-technical audiences with a positive, collaborative, and enablement-focused attitude. - To work with our other internal teams within Chorus and be a SME on security. - Assess new threats and propose detection logic for new rule sets. - Stay up to date with the threat landscape. - Responsible for design of security alerts and incidents. - Maintain awareness of and follow Chorus company procedures and guidelines, including security, regulatory and quality related matters. - Comply with all relevant legislative and legal requirements, including industry regulations, employment law, Data Protection and Health and Safety. - Demonstrate behaviours that promote our values. - Undertake any other duties as reasonably requested. Qualifications - Insatiable curiosity & desire to challenge conventional approaches to solving problems. - Strong technical skills across Microsoft Threat Protection products and Azure Security. - Experience with industry recognized SIEM solutions preferably with Microsoft Sentinel. - Experience with Query Languages preferably KQL. - Any Python/JavaScript knowledge is helpful. - Degree in a Computer Science discipline OR equivalent work experience. - Experience in understanding the MITRE ATT&CK framework or any other security defence frameworks. Desired Qualifications - Microsoft Certifications: MS-500, AZ-500, SC-100, SC-200, SC-300, SC-401. - If you do not have any of the above please don’t worry. What we want is a can do attitude, an enthusiastic individual, someone who can break down barriers and just wants to get stuck in. Role Context The Security Detection and Automation Engineer operates in a highly technical and fast evolving security operations environment, working on complex detection, integration, and automation challenges across multiple customer environments. The role involves designing and maintaining scalable detections, integrations, and automations within the Microsoft security ecosystem, making technical decisions that directly affect the effectiveness, performance, and reliability of the Chorus CSOC platform. The role has a significant impact on improving threat detection quality, reducing manual analyst effort through automation, and strengthening Chorus’ overall security service capability. The role holder works closely with CSOC analysts, engineers, and wider internal teams, acting as a subject matter expert and regularly engaging in technical discussions around threat detection, incident response, and platform improvements. While the role does not have direct line management responsibility, it has influence through technical leadership, mentoring, and ownership of security content, tooling, and integrations, and is responsible for managing and maintaining critical security systems, integrations, and automation workflows that underpin CSOC operations. Please feel free to submit your covering letter via video if you prefer.

• Complete a practitioner-level skills assessment • Complete a short post-assessment survey providing feedback • Ensure valid practitioner-level participation by scoring above 50% on the assessment.

• Ease Learning is seeking a qualified Subject Matter Expert (SME) with applied, real-world experience in Security Control Assessor to participate in a skills assessment validation engagement. • Complete a practitioner-level skills assessment used for validation and standard-setting purposes. • Complete a short post-assessment survey providing feedback on the assessment experience. • This role does not involve teaching, instructional design, content creation, or ongoing advisory responsibilities.