About the role
The Tide Security Engineering team is made up of three core areas: Product Security, Identity, Threat Detection & Response
Threat Detection & Response (this role!) focuses on protecting the company by building a robust detection and automation platform. We're proactive in our defence, constantly hacking ourselves to improve our security posture and staying ahead of emerging threats. Our goal is to make Tide resilient against the ever-evolving threat landscape.
As a Senior Threat Detection & Response Engineer, you'll be:
- Supporting the development and implementation of a strategic vision for threat detection, driving the overall direction and priorities for a team of highly talented engineers.
- Getting hands-on with SIEM systems, including creating custom log-parsers for in-house applications, configuring alert rules, performing log analysis and tuning detections to reduce false positives.
- Creating security automations and services to automate mundane tasks; from data enrichment to automatically removing phishing emails from employee mailboxes. We want you to run with the anything is possible mantra.
- Continuously hunting for sophisticated threats across our infrastructure, leveraging threat intelligence and innovative detection techniques to stay ahead of attackers. You'll monitor and respond to threats across AWS, GCP, internal applications, and employee endpoints (Windows, macOS).
- Collaborating with cross-functional teams to develop and implement; business-specific threat detection rules.
- Responsible for ensuring the quality of detections, and uptime of our detection ecosystem through mature test driven development paired with proactive health monitoring capabilities.
- Identifying opportunities to build or enhance internal tools that streamline threat detection processes, improve data visibility, and increase response efficiency.
- Leading complex incident investigations, coordinating efforts across the security, IT, and engineering teams to ensure rapid and effective containment, remediation, and recovery.
- Support as part of the wider security incident response on-call rota.
What makes you a great fit:
- Strong knowledge with one of the following: Splunk, Scanner, Sentinel, SecOps.
- Strong understanding of modern attack and defence techniques which apply to Cloud (AWS, GCP), SaaS (such as Google Workspace and Okta) and desktop (Windows and macOS) environments.
- Passion for passing on knowledge to fellow colleagues.
- Hands-on attitude and the ability to drive solutions to completion.
- Strong experience in security automation, from writing scripts to creating end-to-end automated workflows. Familiarity with SOAR platforms and automating threat detection and response tasks.
- Excellent spoken and written communication skills.
- Experience with writing automation and scripts; bonus points if you have a repository to show-case your work.
What you'll get in return:
- Competitive Compensation - competitive salary and share options
- Time Off Generous annual leave on top of bank holidays.
- Parental Leave Paid maternity, paternity, and adoption leave to support your family journey.
- Sabbatical Extended unpaid and paid leave options after completing milestone years with Tide.
- Health Insurance Private family insurance with additional OPD coverage and top-up options.
- Life & Accident Cover Comprehensive accidental and life insurance protection.
- Mental Wellbeing Access to therapy sessions, courses, meditations, and workshops.
- Volunteering & Development Days Paid days annually for volunteering or personal growth.
- Learning & Development Annual budget for books, courses, coaching, and more.
- WOO (Work Outside the Office) Work from abroad for up to 90 days annually.
- Home Office Setup Contribution towards setting up your home office
- Laptop Ownership Keep your old laptop and get a new one when it's time for a replacement.
- Snacks & Meals Office perks with snacks, coffee, tea, and lunch (location dependent).
Tidean Ways of Working
At Tide, we champion a flexible workplace model thatsupports both in-person and remote work to cater to the specific needs of our different teams.
While remote work is supported, we believe in the power of face-to-face interactions to foster team spirit and collaboration. Our offices are designed as hubs for innovation and team-building, where we encourage regular in-person gatherings to foster a strong sense of community.
