About Capgemini

Capgemini is a global leader in partnering with companies to transform and manage their business by harnessing the power of technology. The Group is guided everyday by its purpose of unleashing human energy through technology for an inclusive and sustainable future. It is a responsible and diverse organization of 350,000 team members in more than 50 countries. With its strong 55-year heritage and deep industry expertise, Capgemini is trusted by its clients to address the entire breadth of their business needs, from strategy and design to operations, fueled by the fast evolving and innovative world of cloud, data, AI, connectivity, software, digital engineering and platforms. The Group reported in 2022 global revenues of €22 billion.

Role Description

We're looking for a passionate and experienced UCF Operator (Detection Engineer) to join our vibrant team! As the UCF Operator, you will design, build, deploy, and maintain detection capabilities that identify and respond to cybersecurity threats across the organization’s environment. You will transform raw security data into actionable insights, ensuring that detection systems effectively identify malicious or unauthorized activities while continuously improving detection accuracy and performance.

Responsibilities:

• Develop and maintain detection rules, signatures, and playbooks

• Design, build, test, and optimize detection logic within the Use Case Factory

• Deploy cybersecurity detection and response capabilities across SOC infrastructure

• Analyze and correlate data from multiple sources to identify threats and suspicious activities

• Test and validate detection rules against real-world threat scenarios

• Monitor, tune, and improve detection performance to reduce false positives and enhance accuracy

• Collaborate with SOC teams (Threat Intelligence, Threat Hunting, Analysts) to enhance detection coverage

• Document detection logic, processes, and operational procedures

Requirements:

• Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or a related field (preferred)

• Minimum 6-10 years of experience in cybersecurity operations, detection engineering, or SOC environments

• Proven experience in developing and managing detection rules within SIEM platforms (e.g., Splunk)

• In-depth understanding of cybersecurity technologies, threat detection methodologies, and security operations

• Excellent communication, interpersonal, and problem-solving skills

• Fluency in written and spoken English

• Strong analytical and reporting skills

• Proficiency in various security tools and technologies, including SIEM (Splunk), SOAR platforms, scripting languages (Python, PowerShell, Bash), and CI/CD pipelines

Choosing Capgemini means choosing a company where you will be empowered to shape your career in the way you’d like, where you’ll be supported and inspired by a collaborative community of colleagues around the world, and where you’ll be able to reimagine what’s possible. Join us and help the world’s leading organizations unlock the value of technology and build a more sustainable, more inclusive world.