Backend Engineer, Threat Intelligence

Hello, let us introduce ourselves! watchTowr is the Preemptive Exposure Management capability trusted by Fortune 500 companies and critical infrastructure providers. By combining proactive threat intelligence, real attacker telemetry, and automated red teaming, watchTowr continuously identifies and validates real exposure - so security teams can outrun real-world threats. When exploitation happens in hours, watchTowr delivers what no one else can: time to respond. We are a global team of operators, researchers, and engineers who have spent years thinking like attackers - and we are now building the technology to stop them. Our work is recognised across the industry, with original vulnerability research from watchTowr Labs and innovations like Instinct and Attacker Eye shaping the future of cybersecurity. Backed by $29M in funding, recognised by Gartner, and scaling fast across the globe, we are in a high-growth phase of our journey. We are a young, high-energy, and research-driven team, obsessed with building world-class technology - and we want exceptional people to join us.

Position Summary

We are looking for an ambitious Engineer, with strong Python experience, to join the watchTowr Labs Engineering team in our Backend Engineering squad, where you will help enhance and expand our Threat Intelligence capabilities across our internal platforms. In this role, you will work on building and improving systems that collect, process, and analyse threat and vulnerability data to support our security research and intelligence operations.

Responsibilities

• Threat Intelligence Platform Development: Enhance and develop our internal Django Python based threat and vulnerability intelligence platform, ensuring it remains scalable, reliable, and capable of handling large volumes of security data.
• Threat Data Automation: Design and implement automation pipelines that ingest, normalise, and process internal and external threat intelligence sources.
• Platform Optimisation: Continuously improve existing workflows, services, and codebases to increase efficiency, reliability, and performance.
• Operational Reliability: Ensure platform uptime, monitoring, and logging are maintained to support reliable threat intelligence operations.

Essential Experience

We would love to talk to you if you have 3–8 years of software engineering experience, with strong Python skills, together with the following traits:

• Programming Skills: High proficiency in Python (Django), with experience building scalable, maintainable systems and task orchestration frameworks.
• Threat Intelligence or Cyber Security Expertise: Experience working in the threat intelligence or broader cyber security space, building or supporting systems that process and analyse security data.

Ideal Experience

• Large Language Models (LLMs): Exposure to working with LLM APIs (e.g. 'OpenAI', 'Anthropic') to build applications or tooling as a productivity amplifier or in automating processes and scaling security workflows.
• Data Processing & Search Platforms: Experience building or working with large scale data ingestion and processing pipelines, and familiarity with search or analytics platforms such as OpenSearch or Elasticsearch.
• Security Tooling & Automation: Experience working with, and maintaining, security products, developing security tooling, automation frameworks, or contributing to open source security projects.
• Cloud & CI/CD Expertise: Experience working with Cloud providers such as AWS/GCP/Azure, container orchestration platforms, Infrastructure-as-Code concepts and CI/CD pipelines.
• Exposure to startups or high-growth scale-ups, with comfort navigating ambiguity and fast-changing priorities.
• Proven ability to thrive under pressure and adapt to shifting priorities.
• Proactive, collaborative, and ownership-driven mindset.
• Passion for continuous improvement and innovation.
• Ability to learn quickly and apply new concepts effectively.

Benefits

• Competitive compensation - we believe that hard work, skills and ambition should be fairly compensated.
• Meaningful role in a company - You will be a key and early contributor to a fast-growing cybersecurity business that helps protect some of the world's largest enterprises.
• The best tools and powerful kit - we enable you with the tools to effectively fulfil your role.
• Endless opportunities – we are in a high-growth phase of our journey, and plan to promote from within as we scale.
• Work with cyber security experts – we are solving cutting-edge industry-wide cyber security challenges with some of the world’s most advanced organisations.

Equal Opportunity

watchTowr is proud to be an Equal Opportunity Employer. At watchTowr, we’re dedicated to fostering an inclusive, respectful, and diverse environment where every individual is recognised for their talent and potential. Our hiring decisions are guided by your capabilities, experience, and what you bring to the role – not by unrelated personal attributes. We have a zero-tolerance approach to any form of discrimination or harassment. This includes – but isn’t limited to – discrimination based on race, ethnicity, religion, colour, nationality, sex, sexual orientation, gender identity or expression, age, disability, pregnancy or parental status, veteran status, or any other characteristic protected by law. We actively encourage people from all backgrounds to apply. Even if you don’t tick every box in the job description, we’d still love to hear from you.