Threat Detection Engineer – II

Location: Sofia
Department: Risk, Compliance and Information Security

As a Threat Detection Engineer at Tide, you’ll join an ambitious team of highly motivated, talented Tideans who love to collaborate, and are driven by helping people achieve their business ambitions. We live and breathe our values, which are to put our members first, work as one team and be data-driven, as part of our team, they’ll matter to you too. You'll also help take our security processes to the next level. Our scaling security team is responsible for securing Tide, our Tideans and our Members. This is achieved through Security Operations focused on event data, incident response and tooling and the automation of all of that to free up TD engineers to go on focused threat hunts.

About the Tech

We're security champions working tirelessly in the automation and orchestration of security process. Working with AWS and within zero-trust concepts in both corporate and platform environments, utilising IAM, SIEM and Solid Device Management Practises.

About You

You will:

  • Work on the Implementation and maintenance of our security event monitoring tooling
  • Use Open source intelligence to investigate live and identify future potential threats
  • Build our security incident management and forensics capabilities
  • Work with the Infrastructure team to review and manage our access controls and identity management
  • Manage tooling to effectively detect and respond to security incidents
  • Evaluate the impact of current security trends, advisories, publications, and academic research
  • Build tooling for internal use that enables the team to operate at high speed and at scale
  • Writing, and managing indicator of compromise queries
  • Responding to, triaging, and investigating potential incidents across Tide's laptops, servers, network devices, and cloud systems
  • Acting as incident manager and running interactions with external incident response and forensics teams in the event of a major incident
  • Working with infrastructure teams to ensure that programmatically driven security policies are correct
  • Implementing security orchestration and automation on top of existing solutions
  • Contribute to the vulnerability management and triage program

Let’s not beat around the bush. We’re an international scale-up, we’re busy! If fast-paced environments, cross-team exposure, inquisitive freedom and the ability to have a real impact on a rapidly growing scale-up appeals to you, then you already have the mind of a Tidean. If you have that along with the following experience, we’d love to hear from you.

You’ll be a great fit if:

  • Experienced in operational security, threat detection and response
  • Writing and triaging production security alerts against large data sets, ideally with Splunk Enterprise Security
  • Hardening AWS, Linux containers and common services
  • Experience mentoring other engineers in security
  • Able to act as a cheerleader and champion for security
  • Ability to thrive and succeed in a dynamic, fast growing, startup environment
  • Passion for information security
  • Hands-on attitude and the ability to drive solutions to completion
  • Experience with Automation
  • Excellent oral and written communication skills
  • 2+ years of scripting/coding (Python, Java, Go etc)

The highly desirables:

  • Previous experience in offensive security
  • Knowledge of security compliance standards and regulations including the GDPR/Data protection

What you’ll get in return:

  • 25 days paid annual leave 
  • 3 paid days off for volunteering or L&D activities
  • Extended maternity and paternity leave covered by the company
  • Personal L&D budget in the amount of 1000 BGN per year
  • Additional health & dental insurance
  • Mental wellbeing platform
  • Fully covered Multisports card
  • Food vouchers
  • Snacks, light food, drinks in the office
  • Flexible working options  and WFH equipment allowance
  • Share options


About Us

Tide is the leading provider of UK SME business accounts and one of the fastest-growing FinTechs in the UK. That’s not an unfounded boast – we have over 200,000 members (what we like to call our customers, over two percent market share, and have raised over £120m in funding.

SMEs have been underserved and overlooked by traditional banks for years. In an entrepreneurial age where everyone is expected to take a shot, traditional banks have not evolved with the needs of the market. That’s where Tide comes in. With quick on-boarding, low fees and innovative features, we thrive on making data-driven decisions to help SMEs save both time and money.

We’re also one of LinkedIn’s top 10 hottest UK companies to work for, winner of Best Use of Technology (Growth Finance Awards); Best Banking Provider (Contracting Awards); Innovative Product of the Year (Growth Finance Awards) and we’re listed in the Top 100 FinTech Disruptors and The Startups 100. And that’s just for 2019.

Here's what we think about diversity and inclusion….

Diversity is what makes our world interesting. We don’t build our product for one type of person, Tide is here for everyone. And that’s how we build our teams. We’re a melting pot of different cultures, races, and religions. We’re proud of the fact that we represent society and it will always be our mission to do so. Everyone here is given a voice, and if you like the sound of that, we’d encourage you to come and find your voice here, too.