Tide is hiring a
Lead Threat Detection & Response Engineer

Summary

Join us in our mission to empower small businesses and help them save time and money. As a Lead Threat Detection Engineer, you’ll be defining and implementing a strategic vision for threat detection, driving the overall direction and priorities for a team of highly talented engineers.

Requirements

• Strong knowledge with one of the following: Splunk, Chronicle, Panther
• Strong understanding of modern attack and defence techniques which apply to Cloud (AWS, GCP), SaaS (such as Google Workspace and Okta) and desktop (Windows and macOS) environments
• Passion for passing on knowledge to fellow colleagues
• Hands-on attitude and the ability to drive solutions to completion
• Strong experience in security automation, from writing scripts to creating end-to-end automated workflows. Familiarity with SOAR platforms and automating threat detection and response tasks
• Excellent spoken and written communication skills
• Experience with writing automation and scripts; bonus points if you have a repository to show-case your work

Responsibilities

• Defining and implementing a strategic vision for threat detection, driving the overall direction and priorities for a team of highly talented engineers
• Hands-on with the SIEM; from creating log parsers for in-house web apps to visualising data Looker dashboards
• Creating security automations and playbooks to automate mundane tasks; from data enrichment to automatically removing phishing emails from employee mailboxes
• Continuously hunting for sophisticated threats across our infrastructure, leveraging threat intelligence and innovative detection techniques to stay ahead of attackers. You'll monitor and respond to threats across AWS, GCP, internal applications, and employee endpoints (Windows, macOS)
• Working with teams across the business to help create business specific detections
• Responsible for ensuring good quality detections which align with our Definition of Done guidelines
• Identifying opportunities to build or enhance internal tools that streamline threat detection processes, improve data visibility, and increase response efficiency
• Leading complex incident investigations, coordinating efforts across the security, IT, and engineering teams to ensure rapid and effective containment, remediation, and recovery

Benefits

• Flexible working options
• Share options
• Group Life Insurance
• Vitality Health Insurance, with a proactive focus on mental and physical wellbeing
• 25 days holiday with the ability to buy extra days
• 3 days for L&D or volunteering time off per year
• We invest in your development with a £1,000 professional L&D budget per year
• Access to ‘salary sacrifice’ benefits such as Cycle to Work scheme and pension contribution
• Spacious brand-new office near Old Street with an all-day snacks bar
• Enhanced family-friendly leave
• Sabbatical leave