At a Glance
- Tasks: Own detection engineering, build telemetry pipelines, and respond to security threats.
- Company: Join Doxy.me, a leading telehealth platform transforming healthcare globally.
- Benefits: Enjoy competitive salary, unlimited PTO, and flexible work options.
- Other info: Be part of a small, high-impact team dedicated to innovative security solutions.
- Why this job: Make a real impact in healthcare security while shaping your own role.
- Qualifications: Strong programming skills in Python/TypeScript and experience with detection rules.
The predicted salary is between 36000 - 60000 € per year.
Who You Are
You're a security engineer with a strong software engineering background who'd rather write detection-as-code than click through a SIEM UI. You care about protecting healthcare providers and the patients who depend on them — and you want to build the systems that make that possible.
You'll own Doxy.me's detection and security operations function: writing detection rules, building telemetry pipelines, and responding to threats across our cloud-native platform. You'll apply engineering principles to security — detection-as-code over point-and-click, automation over manual toil. Most of your time will be spent on detection engineering, but you'll also contribute to threat modeling and product security alongside the wider team. You're comfortable with ambiguity, self-directed, and motivated by impact. There's no SOC manager — you'll shape this function from scratch.
Your Skills
- Experience writing and shipping detection rules using a detection-as-code approach
- Strong programming skills in Python and/or TypeScript; comfortable with SQL for querying security data
- Experience with AWS and cloud-native infrastructure
- Familiarity with observability and monitoring platforms like Datadog
- Understanding of attacker techniques and frameworks like MITRE ATT&CK
- Experience with CI/CD pipelines and software engineering workflows
- Comfort with threat modeling and application security concepts
Nice to have:
- Experience with incident response and forensic investigation
- Familiarity with identity and access management systems
The Team
The Information Security team at Doxy.me is small and high-impact: a CISO, plus engineers covering corporate security, GRC & compliance, and product & application security. You'll be our first dedicated detection engineer — meaning you'll shape the function, the tooling, and the approach from the ground up. You'll work most closely with our product security engineer on threat modeling and detection strategy, and across the company with product and engineering teams.
Detection Engineering
- Own the detection lifecycle end-to-end: research threats, write rules as code, deploy via CI/CD, tune for precision, and maintain over time
- Build and maintain telemetry pipelines that give visibility into application, infrastructure, and identity activity
- Correlate signals across multiple data sources to improve detection accuracy and reduce false positives
Security Operations & Response
- Investigate and respond to security events, including containment, remediation, and post-incident analysis
- Build automated response workflows that integrate with our cloud infrastructure and identity systems
Broader Security
- Partner with product and engineering teams on threat modelling to identify detection opportunities early in the design process
- Contribute to security monitoring standards, response procedures, and operational playbooks
Technical Assessment
As part of the interview process, you'll complete a practical assessment focused on detection engineering and threat analysis — or share a portfolio of relevant past work.
Who We Are
At Doxy.me, we're on a mission to connect the world to the future of healthcare. With the trust of over one million providers we are one of the largest Telehealth platforms in the world — but we're not done there. We're HIPAA-regulated and trusted with sensitive patient data across 180+ countries — protecting that trust is why our security team exists.
Blending innovative technology and world‐class design, we enhance the patient‐provider experience and extend the reach of healthcare to every corner of the globe. Our team is motivated by making a difference in the world and pushing the boundaries of what is possible. If you want to change the world by impacting the lives of millions while having fun with a great team, come join us!
Our Culture
- Authentic: We are sincere and care personally. We don't let egos get in the way — getting to the right answer is more important than being right. We focus on doing the right thing and act with integrity.
- Bright: We use our intelligence, talent, and curiosity to create simple, innovative, world‐class solutions to problems. We are constantly seeking to increase our own brightness through learning and collaboration.
- Effective: We are hungry self‐starters who will get the job done regardless of circumstances. We don't need to be managed or told what to do. We pride ourselves in producing high‐quality, world‐class results.
Benefits
We are committed to giving you the tools you need to do your best work. We take care of the little things so you can focus on what matters most. Here is a taste of what you can expect:
- A fun, flexible work environment (work from home or on location at one of our regional hubs)
- Competitive salary
- Paid trainings and certifications
- Advancement opportunities in a growing company
- Medical, Vision, and Dental insurance
- 401k match
- Unlimited PTO
Our employees give us a 4.9 rating on Glassdoor.
Security Engineer, Detection & Response in London employer: Doxy.me Inc.
At Doxy.me, we pride ourselves on being an exceptional employer, offering a dynamic and flexible work environment that empowers our employees to make a meaningful impact in the healthcare sector. With a strong focus on personal growth, competitive salaries, and comprehensive benefits including unlimited PTO and paid training, we foster a culture of authenticity, curiosity, and effectiveness. Join us in shaping the future of telehealth while enjoying the freedom to work remotely or from one of our regional hubs in London.
StudySmarter Expert Advice🤫
We think this is how you could land Security Engineer, Detection & Response in London
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, attend meetups, and connect with people on LinkedIn. You never know who might have the inside scoop on job openings or can put in a good word for you.
✨Tip Number 2
Show off your skills! Create a portfolio showcasing your detection rules and any projects you've worked on. This is your chance to demonstrate your expertise in detection-as-code and cloud-native security.
✨Tip Number 3
Prepare for those interviews! Brush up on your knowledge of MITRE ATT&CK and be ready to discuss how you've tackled security challenges in the past. Practice makes perfect, so consider mock interviews with friends or mentors.
✨Tip Number 4
Apply through our website! We love seeing candidates who are genuinely interested in joining our mission at Doxy.me. Tailor your application to highlight how your skills align with our needs in detection engineering.
We think you need these skills to ace Security Engineer, Detection & Response in London
Some tips for your application 🫡
Show Your Passion for Security:When writing your application, let us see your enthusiasm for security engineering! Share your experiences and projects that highlight your skills in detection-as-code and how you’ve contributed to protecting sensitive data.
Tailor Your Application:Make sure to customise your application to reflect the specific requirements of the Security Engineer role. Highlight your programming skills in Python or TypeScript, and any experience with AWS or cloud-native infrastructure that aligns with what we’re looking for.
Be Clear and Concise:We appreciate clarity! Keep your application straightforward and to the point. Use bullet points where necessary to make it easy for us to see your key achievements and skills at a glance.
Apply Through Our Website:Don’t forget to apply through our website! It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it shows you’re serious about joining our team!
How to prepare for a job interview at Doxy.me Inc.
✨Know Your Detection Engineering
Make sure you brush up on your detection engineering skills. Be ready to discuss your experience with writing detection rules as code and how you've applied automation in your previous roles. Prepare examples of how you've tackled security challenges using a detection-as-code approach.
✨Show Off Your Programming Skills
Since strong programming skills in Python and/or TypeScript are crucial, be prepared to demonstrate your coding abilities. You might be asked to solve a problem or write a snippet of code during the interview, so practice common coding challenges related to security data querying with SQL.
✨Familiarise Yourself with Threat Modelling
Understand the basics of threat modelling and be ready to discuss how you would identify detection opportunities early in the design process. Think about past experiences where you collaborated with product and engineering teams to enhance security measures.
✨Prepare for the Technical Assessment
The technical assessment is a key part of the interview process. If you have a portfolio of relevant work, make sure it’s polished and highlights your best projects. If not, practice common detection engineering scenarios and be ready to explain your thought process clearly.
