Cyber Defence Specialist (Manchester)

Insight Investment are looking for a Cyber Defence Specialist to join our Cyber Security team. This role will maintain the Sentinel Threat Detection capability for Insight's bespoke application. The successful candidate will maintain and optimise the Microsoft Sentinel platform, ensuring its stability, performance, and integration with other security tools, as well as developing use cases for the SOC team. Alongside this, the candidate will support the 24/7 SOC team, providing incident response, and continuously improving detection and automation capabilities.

• Maintain and optimise the Microsoft Sentinel environment, including configuration, performance tuning, and health monitoring.
• Onboard new data sources, connectors, and log streams to support evolving security requirements.
• Develop and enhance analytics rules, workbooks, and playbooks to improve detection and response.
• Monitor security alerts alongside the 24/7 SOC team, providing advanced analysis and escalation support.
• Troubleshoot and resolve issues related to Sentinel ingestion, queries, and automation workflows.
• Collaborate with SOC analysts, application and development teams, security engineers and security architects to ensure effective threat detection and incident response.
• Document configurations, processes, and improvements for operational continuity.

• Experience developing, testing and implementing use cases/detection rules for the Sentinel SIEM environment.
• Strong hands on experience with Microsoft Sentinel and related Azure security services.
• Proficiency in Kusto Query Language (KQL) for creating and tuning detection rules and dashboards.
• Solid understanding of SIEM concepts, log ingestion, and security monitoring practices.
• Experience with incident response workflows and SOC operations.
• Ability to work collaboratively with development, engineering and monitoring teams.
• Excellent problem solving and communication skills.

• Experience with SOAR automation and playbook development.
• Familiarity with cloud security monitoring across Azure, AWS, or GCP.
• Knowledge of MITRE ATT&CK framework and threat detection methodologies.
• Exposure to compliance driven environments and security best practices.
• Relevant certifications (e.g., SC-200, AZ-500, Security+).

Insight Investment is a leading asset manager focused on designing investment solutions to meet its clients' needs. Founded in 2002, Insight's collaborative approach has delivered both investment performance and growth in assets under management. Insight manages assets across its core liability driven investment, risk management, full spectre fixed income, currency and absolute return capabilities.

Insight has a global network of operations in the UK, Ireland, Germany, US, Japan and Australia. More information about Insight Investment can be found at: