At a Glance
- Tasks: Engineer high-fidelity threat detections and conduct proactive threat hunting.
- Company: Join Checkout.com, powering digital experiences for global brands like eBay and Spotify.
- Benefits: Flexible hybrid work model, competitive salary, and opportunities for personal growth.
- Other info: Collaborative culture that values diversity and supports your career journey.
- Why this job: Make a real impact in cybersecurity while working with cutting-edge technology.
- Qualifications: Experience in detection engineering and strong understanding of attacker techniques.
The predicted salary is between 60000 - 80000 £ per year.
We’re Checkout.com. You might not know our name, but companies like eBay, Spotify, Klarna, Uber, and Sony do, because we’re behind many of the digital experiences you use every day. We are where the world checks out, enabling over 10 billion transactions daily for more than one billion global shoppers. Our platform helps the most ambitious businesses deliver effortless digital experiences, at scale.
The role involves owning and evolving the company’s threat detection and threat-hunting capability. This role defines what “good” looks like for detection and increasingly engineers it directly as capability shifts into Cyber Security. You will understand attacker behaviour, convert it into high-fidelity detection logic, and raise the security baseline for the entire organisation.
You will partner closely with Security Operations, GRC and Engineering—setting standards, direction, and expectations—while progressively taking ownership of the most complex and high-value detection and threat engineering work.
What you’ll be responsible for:
- Engineering high-fidelity threat detections across endpoint, identity, cloud, and SaaS
- Defining detection standards, principles, and quality thresholds for Security Operations
- Conducting proactive threat hunting based on attacker behaviour, not vendor alerts
- Translating threat intelligence and incident learnings into durable, reusable detections
- Mapping detections to MITRE ATT&CK and real-world attack paths
- Reducing alert fatigue through logic refinement, correlation, and contextual enrichment
- Advising and supporting during high-severity security incidents; contribute to runbooks and escalation playbooks
- Driving the transition of advanced detection capability into Cyber Security ownership
What we’re looking for:
- Proven experience in detection engineering, threat hunting, or advanced SOC roles
- Deep understanding of modern attacker tradecraft and intrusion techniques across the attack lifecycle
- Hands-on experience building detection logic in modern SIEM platforms (e.g Sentinel)
- Proficiency with scripting and programming (e.g. Python, KQL) to build detection pipelines and automation
- Willingness to challenge bad detections, weak assumptions, and vanity metrics
- Pragmatic mindset: precision and impact beat coverage theatre
- Experience operating beyond traditional SOC or MSSP models
- Hands-on cloud detection experience (identity, control plane, SaaS)
- Familiarity with threat intelligence platforms and frameworks such as PCI DSS, NIST CSF, SOC 2, ISO27001, CIS Benchmarks, and MITRE ATT&CK for Cloud.
We create the conditions for high performers to thrive, through real ownership, fewer blockers, and work that makes a difference from day one. Here, you’ll move fast, take on meaningful challenges, and be recognized for the impact you deliver. It’s a place where ambition gets met with opportunity, and where your growth is in your hands.
We work as one team, and we back each other to succeed. So whatever your background or identity, if you’re ready to grow and make a difference, you’ll be right at home here.
Our hybrid working model offers flexibility, with three days per week in the office to support collaboration and connection.
Detection & Threat Engineer in London employer: Checkout.com
At Checkout.com, we pride ourselves on being an exceptional employer that fosters a culture of innovation and collaboration. As a Detection & Threat Engineer, you'll have the opportunity to work at the forefront of fintech in our London HQ, where your contributions will directly impact the security landscape of major global brands. We offer a hybrid working model, ample growth opportunities, and a supportive environment that values diversity and ambition, ensuring you can thrive both personally and professionally.
StudySmarter Expert Advice🤫
We think this is how you could land Detection & Threat Engineer in London
✨Tip Number 1
Network like a pro! Reach out to people in the industry, especially those at Checkout.com. A friendly chat can open doors and give you insights that a job description just can't.
✨Tip Number 2
Show off your skills! If you've got a portfolio or any projects related to detection engineering or threat hunting, make sure to highlight them during interviews. Real-world examples speak volumes.
✨Tip Number 3
Prepare for the unexpected! Brush up on your knowledge of modern attacker tradecraft and be ready to discuss how you would tackle real-world scenarios. This shows you're not just book-smart but also street-smart.
✨Tip Number 4
Apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you're genuinely interested in being part of our team at Checkout.com.
We think you need these skills to ace Detection & Threat Engineer in London
Some tips for your application 🫡
Tailor Your Application:Make sure to customise your CV and cover letter for the Detection & Threat Engineer role. Highlight your experience in detection engineering and threat hunting, and don’t forget to mention any relevant tools or frameworks you’ve worked with!
Showcase Your Skills:We want to see your hands-on experience! Include specific examples of how you've built detection logic or conducted threat hunting. This is your chance to shine, so let us know what you can bring to the table.
Be Authentic:Don’t be afraid to show your personality in your application. We value curiosity and conviction, so share your passion for cybersecurity and how you approach challenges. It’s all about finding the right fit!
Apply Through Our Website:For the best chance of success, make sure to apply directly through our website. This way, we can easily track your application and get back to you quicker. Plus, it shows you’re serious about joining our team!
How to prepare for a job interview at Checkout.com
✨Know Your Stuff
Make sure you brush up on your knowledge of detection engineering and threat hunting. Familiarise yourself with the latest attacker tradecraft and intrusion techniques. Being able to discuss real-world examples will show that you’re not just book-smart but also have practical insights.
✨Showcase Your Skills
Prepare to demonstrate your hands-on experience with SIEM platforms and scripting languages like Python or KQL. Bring examples of detection logic you've built or automation pipelines you've created. This is your chance to shine, so don’t hold back!
✨Understand the Company’s Needs
Research Checkout.com and understand their role in the fintech space. Be ready to discuss how your skills can help them enhance their threat detection capabilities. Tailoring your answers to align with their mission will make a strong impression.
✨Ask Smart Questions
Prepare thoughtful questions about their current threat detection strategies and challenges they face. This shows your genuine interest in the role and helps you gauge if the company is the right fit for you. Plus, it opens up a dialogue that can highlight your expertise.
