Threat Detection Engineer - 3

ABOUT THE TEAM

The Tide Security Engineering team is made up of three core areas : Product Security, Threat Detection & Response, and Identity.

Product Security consists of application and cloud security experts. Their mission is to protect the products we build, covering everything from secure design reviews to threat modelling and penetration testing, ensuring security is embedded from the ground up.

Threat Detection & Response (this role!) focuses on protecting the company by building a robust detection and automation platform. We're proactive in our defence, constantly hacking ourselves to improve our security posture and staying ahead of emerging threats. Our goal is to make Tide resilient against the ever-evolving threat landscape.

Identity is responsible for managing Tide's staff identity platform, ensuring that access to systems and infrastructure is secure, seamless, and aligned with modern security practices. The team uses strategies like zero trust, multi-factor authentication, and granular role-based access controls to safeguard our internal operations.

While each area has its own focus, collaboration is key - it's why we share the same Slack channel and hold our standups together as one cohesive team, ensuring alignment and seamless communication across all security functions.

ABOUT THE ROLE

As a Threat Detection Engineer, you'll be :

• Implementing the strategic vision for threat detection, taking ownership of the detection and response life cycle.
• Hands-on with the SIEM; from creating log parsers for in-house web apps to visualising data Looker dashboards.
• Creating security automations and playbooks to automate mundane tasks; from data enrichment to automatically removing phishing emails from employee mailboxes. We want you to run with the 'anything is possible' mantra.
• Continuously hunting for sophisticated threats across our infrastructure, leveraging threat intelligence and innovative detection techniques to stay ahead of attackers. You'll monitor and respond to threats across AWS, GCP, internal applications, and employee endpoints (Windows, macOS).
• Working with teams across the business to help create business specific detections.
• Responsible for ensuring good quality detections which align with our standards and best practices .
• Identifying opportunities to build or enhance internal tools that streamline threat detection processes, improve data visibility, and increase response efficiency.
• Leading complex incident investigations, coordinating efforts across the security, IT, and engineering teams to ensure rapid and effective containment, remediation, and recovery.

WHAT WE ARE LOOKING FOR

WHAT YOU WILL GET IN RETURN

TIDEAN WAYS OF WORKING

At Tide, we champion a flexible workplace model that supports both in-person and remote work to cater to the specific needs of our different teams.

While remote work is supported, we believe in the power of face-to-face interactions to foster team spirit and collaboration. Our offices are designed as hubs for innovation and team-building, where we encourage regular in-person gatherings to foster a strong sense of community.

Skills Required

Saas, security automation , Windows, Okta, Gcp, Macos, Splunk, Aws