Technical Specialist
Financial Services
TechnicalSpecialist-Detection,EngineeringandAutomation
Neural analysis suggests this role is
optimal for Mid+ candidates.
“Technical Specialist - Detection, Engineering and Automation at Technical Specialist. Skills: Detection Engineering, Automation, Cybersecurity Operations, SIEM/SOAR/EDR. Build security detections using Sentinel-as-Code. Maintain security detections using Sentinel-as-Code”
Industry & Context.
What They're Looking For.
Must Have
4+ years Detection Engineering experience, 4+ years SOC engineering experience, Experience managing security tools, Hands on experience developing detections in Microsoft Sentinel, Experience building and maintaining CI/CD pipelines, Experience onboarding and operationalizing new log sources into SIEM, Practical experience engineering SIEM, SOAR or EDR platforms, Experience supporting security incidents from an engineering perspective, Experience with AWS and Azure, Experience with email security solutions, Scripting skills (PowerShell, Python, Bash or JavaScript), Familiarity with YAML/JSON, Familiarity with IaC principles, Familiarity with modern automation frameworks, Knowledge of Azure cloud environments, Knowledge of AWS cloud environments, Knowledge of native security telemetry, Knowledge of native security integrations, Communication skills, Analytical mindset
Nice to Have
Microsoft SC 200 certification, Microsoft AZ 500 certification, AWS Security Specialty certification, CySA+ certification, SSCP certification, OSCP certification
What You'll Do.
Build security detections using Sentinel-as-Code
Maintain security detections using Sentinel-as-Code
Enhance security detections using Sentinel-as-Code
Develop CI/CD pipelines
Maintain CI/CD pipelines
Engineer SOAR automation
Integrate SOAR automation
Onboard security logs into SIEM
Support SOC during incidents
Support CIRT during incidents
Provide engineering expertise during incidents
Onboard telemetry during incidents
Enhance detection during incidents
Enhance automation during incidents
Maintain security controls
Improve security controls
Implement tool updates
Implement new features
Implement product enhancements
Manage tooling-related incidents with vendors
Manage tooling-related incidents with internal teams
Deliver backlog items
Deliver operational improvements
Identify quick-win improvements for detections
Identify quick-win improvements for automation
Identify quick-win improvements for tooling integrations
Produce clear documentation
Produce quality checks
How You'll Work.
Team & Collaboration
Global engineering teams; Front-line analysts
Communication Scope
Technical feedback translation
Full Job Description
# **About the Opportunity** Job Type: Permanent Application Deadline: 31 July 2026 **Job Description** **Title** Technical Specialist -**** Detection, Engineering and Automation **Department** FIL – Global Cybersecurity Operations **Location** Kingswood, Surrey **Reports To** Senior Manager - Detection, Engineering and Automation **Level** 4 **** We share a commitment to making things better for clients and each other. We continually explore new technology and different ways of working to put our clients first. So bring your boldest ideas to our Cyber Defense Operations team and feel like you’re making progress. **About your team** Technology function across FIL is responsible for all global aspects of Technology, Digital, Cybersecurity, and Innovation. Fidelity is a value-driven, customer-obsessed organization and in Technology we are fortunate to play a direct role in helping our clients with one of the most important aspects of their lives – their financial well-being. Within the Technology function is our Global Cyber & Information Security (GCIS) that operates enterprise security services and controls. These are designed to mitigate Cyber and Information Security risks ensuring that Fidelity's business operates securely. The Technical Cybersecurity teams monitor both the internal and external threat environment, responding to security alerts and events in close to real time, as well as providing security assurance and access management services across the enterprise technology and business environment. Our global innovative Cyber Defence Operations team sits within GCIS and provides proactive, cutting-edge solutions to protect clients’ digital assets and infrastructure against evolving cyber threats. The Detection Engineering & Automation team within our Global Cybersecurity Operations focuses on the development of automated detection capabilities to reduce manual effort of the Global Cybersecurity Operations team freeing up time to focus on real cyber threats.
Applying for this Technical Specialist - Detection, Engineering and Automation role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on Workday
- Workday has a multi-step form — save your progress after every section.
- "Apply With LinkedIn" can fail or lose data; manual entry is more reliable.
- Watch for the "Submit for Review" final step — hitting "Save" alone does not submit.
- Job requisition numbers are useful when following up with HR by email.
ANONYMOUS · UNFILTERED
What do employees actually say about Technical Specialist?
Real rants from real employees. Read before you apply.