Overview
Senior Threat Detection Engineer Jobs in Austin, Texas, USA at Bumble
Title: Senior Threat Detection Engineer
Company: Bumble
Location: Austin, Texas, USA
Type: Full Time
Category: IT/Tech, Security
US TX Austin Information Technology – Information Security /Hybrid
Inclusion
at Bumble Inc. Bumble Inc. is an
equal opportunity employer
and we strongly encourage people of all ages, colour, lesbian, gay, bisexual, transgender, queer and non-binary people, veterans, parents, people with disabilities, and neurodivergent people to apply. We’re happy to make any reasonable adjustments that will help you feel more confident throughout the process, please don’t hesitate to let us know how we can your application, please feel free to note which pronouns you use (For example: she/her, he/him, they/them, etc).You’ll
be the first to respond to security events, typically occurring in three stages: threat detection, threat investigation, and timely response. You will work as part of a
multidisciplinary
team to solve puzzles on what bad actors are doing, and how to automate our systems and playbooks to better detect and enrich events. You should be tenacious with your curiosity both technically and organizationally about security risks, and work cross-functionally to resolve anything we don’t know.
We routinely test our systems and you will have the opportunity to produce advanced techniques to correlate intelligence, event information and coordination systems like Slack to increase our defensive security posture.
Key Responsibilities:
Responsible for security event monitoring, detection, and response as part of a multi-disciplinary 24/7 on-call rota.
Cover all stages of security incidents, from initial detection to triage and remediation, demonstrating initiative and expertise.
Identify, prototype, and implement technical solutions to automate event correlation and detection, ensuring efficiency and effectiveness.
Operate with a focus to meet or exceed response SLAs, continuously seeking and implementing process improvements to achieve operational excellence.
Ensure thorough incident identification, assessment, quantification, reporting,
communication
, mitigation, and monitoring.
Establish, develop, and revise processes that enhance the overall operational security posture of the company.
Drive threat management and modelling efforts, identify threat vectors and develop use cases for comprehensive security monitoring.
Contribute to the integration of standard and non-standard logs in the SIEMRequired Experience &
Skills:
Extensive experience in security incident response and security knowledge of Linux, with familiarity in macOS and Windows environments.
Experience in security device output, event and alert consumption
Advanced understanding of common threat defence coding languages such as Python or Go or experience in threat identification and response using other languages
In-depth knowledge of key log sources of OS, applications, databases and middleware to address security threats.
Strong and demonstrable practical experience responding to common threats such as malware, and social engineering. Experience must include effective use of threat artefacts, IOCs, and behavioural factors.
Experience with
threats such as DDoS and web/mobile application security risks.
Experience with
security tooling in a corporate environment, including commercial sandboxes, proxies, DLP, OSINT, vulnerability management, …
