At a Glance
- Tasks: Develop and automate security detection and incident response workflows.
- Company: Join a forward-thinking team at Thought Machine, focused on innovative security solutions.
- Benefits: Competitive salary, inclusive culture, and opportunities for professional growth.
- Other info: We value diverse backgrounds and encourage all to apply, including those with unique abilities.
- Why this job: Make a real impact in cybersecurity while collaborating with creative minds.
- Qualifications: 1-2 years in threat detection, coding skills in Python or Go, and strong analytical abilities.
The predicted salary is between 40000 - 50000 € per year.
A Threat Detection and Response Engineer is an individual contributor within the Threat Operations team. We desire engineers who can think creatively about security threats, how to detect them, and how to respond to them. We encourage exploration and an eagerness to share when there are unique ideas or perspectives you can bring to a challenge. We don’t just close alerts in Threat Operations; we are active in developing automations, identifying detections and responding to threats at Thought Machine.
Duties
- Develop, integrate, and operate security event detection and incident management services.
- Automate repeatable incident response workflows to minimise the amount of manual work required in incident response.
- Maintain documentation to ensure the repeatability and standardisation of incident response procedures.
- Support our response to security incidents as they occur as part of an incident response rotation, helping manage incident response throughout the incident lifecycle.
- Perform investigation and analysis of security incidents in collaboration with engineers across the company.
- Participate in the team on-call rotation (compensated).
Requirements
Essential
- 1-2 years experience with logging and incident detection platforms, creating new detections, triaging alerts and conducting security investigations.
- Experience in threat detection, incident response or threat intelligence.
- Experience in operating system logging for investigations (Windows Event Log, Sysmon, Journalctl or Auditd).
- Coding experience in Python or Go.
- Comfortable using the command line in Linux or MacOS environments.
- Creative thinking and analytical skills with focus on incident and threat investigations.
- Strong interpersonal and communication skills to support collaboration with other teams during investigations.
Desirable
- Familiarity with cloud or containers technology (AWS, GCP, Azure, Kubernetes, Docker).
- Familiarity with Elasticsearch.
- Contributions to the security community (open source tools, public research, blogging, presentations, etc).
We actively hire candidates who demonstrate technical excellence in their field and welcome people of all ages and backgrounds, providing everyone with equal access to professional development. You are encouraged to apply even if your experience doesn’t accurately match the job description. We also encourage applications from those with different abilities, including candidates with ADHD, autism, dyslexia or dyspraxia.
Threat Detection and Response Engineer employer: Thought Machine
At Thought Machine, we pride ourselves on fostering a dynamic and inclusive work environment where creativity and innovation thrive. As a Threat Detection and Response Engineer, you will have the opportunity to engage in meaningful projects that enhance our security posture while collaborating with talented professionals across various teams. Our commitment to employee growth is evident through our support for continuous learning and development, ensuring that every team member can contribute their unique perspectives and advance their careers in a supportive atmosphere.
StudySmarter Expert Advice🤫
We think this is how you could land Threat Detection and Response Engineer
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, attend meetups or webinars, and don’t be shy about sharing your unique ideas. You never know who might connect you with your next opportunity.
✨Tip Number 2
Show off your skills! Create a GitHub repo or a personal project that highlights your coding chops in Python or Go. This is a great way to demonstrate your creative thinking and technical abilities to potential employers.
✨Tip Number 3
Prepare for interviews by brushing up on your incident response knowledge. Be ready to discuss past experiences and how you tackled security challenges. Practice makes perfect, so consider mock interviews with friends or mentors.
✨Tip Number 4
Don’t forget to apply through our website! We’re all about finding talent that fits our culture, so make sure your application stands out by showcasing your passion for threat detection and response.
We think you need these skills to ace Threat Detection and Response Engineer
Some tips for your application 🫡
Show Your Creative Side:When you're writing your application, don't be afraid to showcase your creative thinking! We love seeing unique ideas and perspectives, especially when it comes to tackling security threats. Let us know how you think outside the box!
Highlight Relevant Experience:Make sure to emphasise your experience with logging and incident detection platforms. If you've created detections or conducted investigations, share those stories! We want to see how your background aligns with what we do.
Keep It Clear and Concise:While we appreciate detail, clarity is key! Make your application easy to read and straight to the point. Use bullet points if needed to highlight your skills and experiences, so we can quickly see what you bring to the table.
Apply Through Our Website:We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it shows you’re keen on joining our team!
How to prepare for a job interview at Thought Machine
✨Know Your Stuff
Make sure you brush up on your knowledge of logging and incident detection platforms. Be ready to discuss your experience with creating detections and triaging alerts, as well as any specific incidents you've handled in the past.
✨Show Off Your Creativity
Since the role requires creative thinking about security threats, come prepared with examples of unique ideas or solutions you've implemented in previous roles. This could be anything from automating workflows to innovative detection methods.
✨Communicate Clearly
Strong interpersonal skills are key in this role. Practice explaining complex technical concepts in simple terms, as you'll need to collaborate with various teams during investigations. Clear communication can set you apart!
✨Familiarise Yourself with Tools
If you have experience with cloud technologies or tools like Elasticsearch, make sure to highlight that. Even if you’re not an expert, showing familiarity can demonstrate your eagerness to learn and adapt to new environments.
