Cyber Security Detection Engineer

Join to apply for the Cyber Security Detection Engineer role at American Express Global Business Travel. Amex GBT is a place where colleagues find inspiration in travel as a force for good and – through their work – can make an impact on our industry. We’re here to help our colleagues achieve success and offer an inclusive and collaborative culture where your voice is valued.

The Senior Cyber Security Detection Engineer is a critical role responsible for advanced threat detection, incident response, and cybersecurity program development within our organization’s Security Operations Center (SOC).

• Incident Response
  • Conduct comprehensive investigation and analysis of security incidents
  • Perform detailed threat assessment and containment
  • Develop and execute incident response strategies
  • Respond to all escalations on shift and be available to respond to high‑ and critical escalations after‑hours and on the weekend
• Threat Detection Engineering
  • Identify relevant threats and create detection code/queries to automate alerts and remediation
• Cyber Threat Intelligence (CTI) and Threat Hunting
  • SIEM content development, including detection as code and custom query building
  • SOAR orchestration/automation development, including playbook development and AI integration
• Technical Duties
  • Identify and analyze relevant CVEs and Advanced Persistent Threats (APTs)
  • Develop and refine SIEM policies
  • Create automation workflows for threat remediation
  • Collaborate with cross‑functional teams to enhance security capabilities
• Leadership and Mentorship
  • Provide monthly cybersecurity training sessions
  • Generate weekly platform performance reports
  • Review and mentor junior analysts
  • Manage SOC incidents during manager’s absence
• Strategic Initiatives
  • Participate in weekly strategic planning meetings
  • Research emerging cybersecurity technologies
  • Evaluate and recommend new security vendor solutions
  • Conduct proof of concept for potential security technologies

• Advanced cybersecurity certifications (CISSP, SANS, CEH preferred)
• Demonstrated expertise in threat detection and incident response
• Strong analytical and problem‑solving skills
• Excellent communication and teamwork abilities

Location: United Kingdom

The #TeamGBT Experience includes flexible benefits tailored to each country that start the day you do, health and welfare insurance plans, retirement programs, parental leave, adoption assistance, and wellbeing resources to support you and your immediate family. Travel perks include a choice of deals each week from major travel providers on everything from flights to hotels to cruises and car rentals. Develop the skills you want when the time is right for you, with access to over 20,000 courses on our learning platform, leadership courses, and new job openings available to internal candidates first.

We strive to champion Inclusion in every aspect of our business at Amex GBT. You can connect with colleagues through our global INclusion Groups, centered around common identities or initiatives, to discuss challenges, obstacles, achievements, and drive company awareness and action.

All applicants will receive equal consideration for employment without regard to age, sex, gender (and characteristics related to sex and gender), pregnancy (and related medical conditions), race, color, citizenship, religion, disability, or any other class or characteristic protected by law.

Furthermore, we are committed to providing reasonable accommodation to qualified individuals with disabilities. Please let your recruiter know if you need an accommodation at any point during the hiring process.

If you’re passionate about our mission and believe you’d be a phenomenal addition to our team, don’t worry about “checking every box.” Please apply anyway. You may be exactly the person we’re looking for!