SENIOR THREAT DETECTION ENGINEER
Fully Remote
Up to £100,000 + Excellent Staff Bens + Share Scheme
SECURE has strategically partnered with a multi-award-winning, software-based organisation at the forefront of pre-emptive exposure management. As a market leader backed by significant venture funding, they expand offensive security capabilities, specifically around Threat Detection Engineering, in their mission of helping organisations understand how they could be compromised. Success in this position will enable the business to build Detection Strategies that Continuously Identify Real-World Exploitation, helping Fortune 500 Companies & Critical Infrastructure Providers outrun Real-World Threats in Real-Time
Role Overview:
We're looking to speak with an ambitious Senior Threat Detection Engineer to join us and expand our Client's Offensive Security Capabilities, specifically around Threat Detection Engineering. You'll own the Design, Implementation & Evolution of Detection Strategies that Identify Real-World Exploitation & Adversarial Behaviour across their Honeypot Network. Ideally based in the UK, you don't need to tick every box - if you're motivated to make an impact, read on.
Skills & Experience of Threat Detection Engineer will include:
Strong Experience of working with Security Telemetry at Scale, including Detection Engineering, Threat Research, SOC, IR or Offensive Security roles
3 Years in Threat Detection, Threat Research or Threat Intelligence Engineering role with Demonstrable Ownership of Production Detections
Hands-On Experience working with Honeypot or Deception Data, Internet-Scale Telemetry or High-Noise Datasets
Strong Background in Threat & Vulnerability Intelligence including Vulnerability Lifecycles, Exploitation Timelines, Threat Actor Tradecraft & Frameworks such as MITRE ATT&CK
Strong Python Skills, with experience Building Detection Tooling, Parsers, Enrichment Pipelines or Internal Analysis Frameworks
Deep Familiarity with OpenSearch / ELK-Style Stacks including Querying, Aggregations, Pipelines & Detection Tuning
Experience working in an Early-Stage B2B Start-Up Focusing on Enterprise Clients
Responsibilities of Threat Detection Engineer includes:
Engineer High-Fidelity Detections for both N-Day & True 0-Day Exploitation by Translating Attacker Tradecraft, Payloads & K ill-Chain Behaviours into Durable Detection Logic
Continuously Improve Signal Quality by Reducing Noise, Validating Detections Against Live Attacker Activity & Tuning for Scale across Millions of Events Per Day
Build & Operate Detection Pipelines that Ingest, Normalise & Correlate Honeypot Telemetry, Vulnerability Intelligence & External Threat Data in near Real Time
Lead Rapid-Reaction Detection Efforts for Emerging Threats, working Cross-Functionally with Engineering, Research & Go-To-Market Teams to turn exploitation into Actionable Customer Insight quickly
Operationalise Threat Intelligence by Converting External Research, Advisories & POCs into Production-Grade Detections & Internal Knowledge Artifacts
Author Original Detection Research & Threat Reports, Documenting Adversary Behaviours, Exploitation Trends & Detection Methodology for Both Internal Stakeholders & External Publication
Mentor & Influence others by Setting Detection Standards, Reviewing Logic & Helping Shape How the Organisation approaches Threat Detection at Scale
At SECURE ,we value Attitude & Aptitude over Certifications. If you possess the drive and relevant experience to deliver tangible results aligned with our clients needs, reach out. We embraceDE&I and Welcome Applications from Underrepresented Groups, Minorities, Women in Cybersecurity, Neurodiverse Individuals, LGBTQ+ Community Members, Veterans, & those from Diverse Socioeconomic Backgrounds.
Curious to Learn More about the company, culture, and purpose?
TPBN1_UKTJ