• Develop, maintain, and improve detection rules, alerts, dashboard, and monitoring workflows across infrastructure, cloud services, identity systems, endpoints, and application platforms. • Participate in incident response activities, including triage, investigation, containment, remediation coordination and post-incident analysis. • Operate and improve security monitoring tooling, including SIEM, log aggregation, alerting, vulnerability management, and related detection and response platforms. • Proactively investigate suspicious activity, anomalous behavior, and emerging threats affecting infrastructure and services. • Create and maintain incident response playbooks, escalation procedure, actionable security guidance, and operational documentation to cloud operations, product development, and systems engineering teams. • Collaborate with the systems engineering team to identify and remediate security weaknesses in cloud, container, Linux, network, identity, and service configurations. • Actively participate in comprehensive disaster recovery planning, business continuity strategy formulation, and live simulations/exercises to validate system resilience and team readiness.

• Own the working relationship with CSG on data residency, PII handling, access governance, and model security controls • Translate policy into guardrails the delivery team and citizen developers can act on • Build and maintain security tooling, guardrail enforcement, and policy-as-code integrations across Enterprise AI platforms • Reduce manual review through automation where possible • Develop reusable security components and patterns that delivery teams and citizen developers can drop into Agent builds—making the secure path the easy path • Instrument AI platforms to detect anomalous behavior, access patterns, and policy violations • Build the detection layer, not just consume it

Requisition Number: 2365239 Security Platform & Detection Engineer Are you an experienced security engineering professional looking to take the next step and make an impact within our Security Operations team? Do you thrive in an environment where you're empowered to innovate, challenge ideas, and create meaningful change? If so, then I encourage you read on. About the Team / Business Area: The Security Operations team operates within a fast-paced and highly regulated healthcare technology environment, protecting nationally critical systems that support frontline healthcare delivery. The team provides services including Security Operations Centre (SOC) oversight, vulnerability management, attack surface management, and continuous monitoring across enterprise, cloud, and network environments. Our work ensures security controls remain effective, resilient, and aligned to real-world threats and patient safety priorities. About the Role: This role is an exciting opportunity to join our Security Operations team as a Security Platform & Detection Engineer, where you will own and optimise our security tooling and detection capability. You will work closely with the SOC, Security Engineering, and Architecture teams to ensure tooling is effective, governed, and aligned to evolving threats. This position is central to delivering high-quality, measurable, and auditable security outcomes across the organisation. Key Responsibilities:• Own BAU administration, configuration, and lifecycle management of security tooling platforms• Provide oversight of detection engineering, improving alert quality and reducing false positives• Enforce change control and governance for tooling and detection updates• Maintain threat framework mapping (MITRE ATT&CK) and detection coverage analysis• Drive continuous improvement and optimisation across security tooling estate Who You Are: You will be a proactive, experienced, and innovative security professional with a background in security engineering or detection engineering. You'll thrive in a dynamic environment, balancing deep technical expertise with strong communication and problem-solving skills. You're someone who enjoys working collaboratively while taking ownership of meaningful work that drives real impact. Key Skills, Experience & Qualifications:• 5+ years experience in Security Engineering, Tooling, or Detection Engineering roles• Hands-on experience with SIEM, EDR, NDR, or security posture tooling• Experience building, tuning, and governing detections• Experience working within structured change control and governance frameworks• Working knowledge of SIEM operations including log onboarding and alert triage Take the next step in your career with us If this sounds like the right next step for you, we'd love to hear from you. If you have any questions about the role or would like an informal conversation before applying, please reach out to the hiring manager for a quick chat. We look forward to receiving your application. -

• Own the end-to-end improvement of security systems and tools, from requirement gathering and prioritization to development coordination, launch, and post-launch optimization. • Collaborate with cross-functional teams to drive feature rollouts, product enhancements, and system improvements. • Continuously identify opportunities to improve internal workflows, system usability, and operational efficiency. • Draft and maintain product documentation, project documentation, process documentation, and internal communications. • Handle day-to-day operational tasks to support business continuity and process efficiency. Support security-related business operations and cross-team collaboration. • Manage security user-facing channels, including content planning, visual asset coordination, publishing management, and performance analysis, with continuous optimization based on key metrics and audience engagement. • Conduct data processing, analysis, and reporting to support business decisions. • Perform other duties as assigned.