Senior Threat Detection Engineer

Summary

Join Tide's Threat Detection & Response team as a Threat Detection Engineer and play a critical role in protecting the company's infrastructure. You will implement the strategic vision for threat detection, own the detection and response lifecycle, and be hands-on with the SIEM. Responsibilities include creating security automations, hunting for sophisticated threats, collaborating with cross-functional teams, and leading incident investigations. Tide offers a flexible workplace model supporting both in-person and remote work, fostering a strong sense of community and collaboration.

Requirements

• Strong knowledge with one of the following: Splunk, Chronicle, Panther
• Strong understanding of modern attack and defence techniques which apply to Cloud (AWS, GCP), SaaS (such as Google Workspace and Okta) and desktop (Windows and macOS) environments
• Passion for passing on knowledge to fellow colleagues
• Hands-on attitude and the ability to drive solutions to completion
• Strong experience in security automation, from writing scripts to creating end-to-end automated workflows
• Familiarity with SOAR platforms and automating threat detection and response tasks
• Excellent spoken and written communication skills

Responsibilities

• Implementing the strategic vision for threat detection, taking ownership of the detection and response life cycle
• Hands-on with the SIEM; from creating log parsers for in-house web apps to visualising data Looker dashboards
• Creating security automations and playbooks to automate mundane tasks; from data enrichment to automatically removing phishing emails from employee mailboxes
• Continuously hunting for sophisticated threats across our infrastructure, leveraging threat intelligence and innovative detection techniques to stay ahead of attackers
• You'll monitor and respond to threats across AWS, GCP, internal applications, and employee endpoints (Windows, macOS)
• Working with teams across the business to help create business specific detections
• Responsible for ensuring good quality detections which align with our standards and best practices
• Identifying opportunities to build or enhance internal tools that streamline threat detection processes, improve data visibility, and increase response efficiency
• Leading complex incident investigations, coordinating efforts across the security, IT, and engineering teams to ensure rapid and effective containment, remediation, and recovery

Preferred Qualifications

Experience with writing automation and scripts; bonus points if you have a repository to show-case your work

Benefits

• At Tide, we champion a flexible workplace model that supports both in-person and remote work to cater to the specific needs of our different teams
• While remote work is supported, we believe in the power of face-to-face interactions to foster team spirit and collaboration