Junior Threat Detection and Response Engineer

Requirements

• 1-2 years experience with logging and incident detection platforms, creating new detections, triaging alerts and conducting security investigations.
• Experience in threat detection, incident response or threat intelligence.
• Experience in operating system logging for investigations (Windows Event Log, Sysmon, Journalctl or Auditd).
• Coding experience in Python or Go.
• Comfortable using the command line in Linux or MacOS environments.
• Creative thinking and analytical skills with focus on incident and threat investigations.
• Strong interpersonal and communication skills to support collaboration with other teams during investigations.

Desirable

• Familiarity with cloud or containers technology (AWS, GCP, Azure, Kubernetes, Docker).
• Familiarity with Elasticsearch.
• Contributions to the security community (open source tools, public research, blogging, presentations, etc).

What You'll Be Doing

• Develop, integrate, and operate security event detection and incident management services.
• Automate repeatable incident response workflows to minimise the amount of manual work required in incident response.
• Maintain documentation to ensure the repeatability and standardisation of incident response procedures.
• Support our response to security incidents as they occur as part of an incident response rotation, helping manage incident response throughout the incident lifecycle.
• Perform investigation and analysis of security incidents in collaboration with engineers across the company.
• Participate in the team on-call rotation (compensated).

Perks and Benefits

• Technical excellence and professional development opportunities.
• Inclusive hiring practices for people of all ages and backgrounds.
• Equal access to professional development.
• Encouragement to apply even if your experience doesn't accurately match the job description.
• Support for candidates with different abilities, including ADHD, autism, dyslexia or dyspraxia.