About CrowdStrike

CrowdStrike stands as a global leader in cybersecurity, safeguarding the people, processes, and technologies that power modern organizations. Since 2011, our unwavering mission has been to stop breaches using the world's most advanced AI-native platform, the Falcon platform. Serving customers across all industries, CrowdStrike ensures businesses run smoothly, communities stay safe, and lives progress without interruption. We foster a remote-first culture that empowers every CrowdStriker with flexibility and autonomy to own their careers. Our commitment to innovation, customer obsession, and community drives us forward.

Role Overview

As a Detection Engineer on the Falcon Complete team, you'll play a pivotal role in our Managed Services, expanding your expertise through diverse experiences in building detection rules, tools, and infrastructure for Falcon Complete Next-Gen SIEM. Collaborate with internal teams to craft high-fidelity detections from CrowdStrike and third-party telemetry, enabling our world-class Managed Detection and Response (MDR) team. This remote position in the United Kingdom offers the chance to deliver exceptional value to customers while thriving in a mission-driven environment focused on stopping breaches.

Key Responsibilities

• Conduct threat research and hunting to pinpoint emerging tactics, techniques, and procedures (TTPs), driving intelligence-led detection requirements.
• Develop, test, and deploy actionable, high-fidelity CrowdStrike Next-Gen SIEM detection rules to empower the MDR team.
• Perform code reviews and rigorous testing to maintain top-tier quality and fidelity in detections.
• Apply CI/CD best practices for scalable deployment of detection rule logic.
• Partner with Security Analysts to develop triage and response playbooks for high-fidelity alerts.
• Work with SIEM architects to establish data parsing and normalization standards using common event schemas.
• Build and maintain utilities and tools for efficient, large-scale operations by the managed services team.
• Provide feedback to product management and engineering to enhance detection pipelines.
• Maintain processes, documentation, and participate in handler rotations.
• Mentor junior team members and lead projects at the Falcon Complete organizational level.

Qualifications & Requirements

Ideal candidates bring 5+ years of experience as a detection engineer, security engineer, analyst, or threat intelligence professional. Deep knowledge of current cyber threats and SIEM-based detection is essential, alongside expertise in parsing standards and analyzing large datasets from various vendors. Proficiency with SIEM solutions like LogScale, Splunk, SumoLogic, Sentinel, QRadar, or LogRhythm is required, as is the ability to write code and leverage regular expressions. Relevant certifications such as GCFA, GCDA, or GCIH strengthen your profile. Strong communication skills for mentoring and collaboration are key in this role.

Benefits & Perks

CrowdStrike offers market-leading compensation and equity awards, ensuring you're rewarded for your impact. Our comprehensive physical and mental wellness programs support your well-being. Enjoy competitive vacation, holidays, paid parental and adoption leaves, and professional development opportunities for all levels. Build connections through Employee Networks, geographic groups, and volunteer initiatives. As a Great Place to Work Certified™ company globally, we prioritize a vibrant, remote-first culture with world-class amenities where available.

Career Growth

At CrowdStrike, career ownership is central to our culture. Detection Engineers gain exposure to cutting-edge Falcon platform technologies, threat hunting, and SIEM innovations. Mentorship, project leadership, and cross-team collaborations accelerate your growth. Whether advancing in managed services or transitioning to product engineering, our remote-first approach provides limitless opportunities to innovate and excel in cybersecurity.

Why Join CrowdStrike

Join a mission that matters: stopping breaches with the Falcon platform's AI-native power. Our remote-first culture in the UK offers flexibility without compromising on high-impact work. Be part of a fanatical team committed to customers, community, and each other. CrowdStrike is an equal opportunity employer, valuing diversity and empowering success for veterans, individuals with disabilities, and all backgrounds. The future of cybersecurity starts with you—apply to shape it.

Role FAQs

Q: Is this role fully remote? Yes, this Detection Engineer position is remote within the United Kingdom.

Q: What SIEM experience is needed? Hands-on work with tools like LogScale, Splunk, Sentinel, or similar is required.

Q: Are certifications mandatory? Preferred but not strictly required; GCFA, GCDA, GCIH are highly valued.

Q: How does this role contribute to Falcon Complete? You'll build detections enabling MDR, directly stopping breaches for customers.

Q: What salary can I expect? Estimated £90,000–£150,000 yearly, based on UK cybersecurity rates, with equity and top benefits.