Senior Threat Intelligence Engineer

ABOUT THE TEAM

The Tide Security Engineering team is made up of three core areas: Product Security, Threat Detection & Response, and Identity.

Product Security consists of application and cloud security experts. Their mission is to protect the products we build, covering everything from secure design reviews to threat modelling and penetration testing, ensuring security is embedded from the ground up.

Threat Detection & Response (this role!) focuses on protecting the company by building a robust detection and automation platform. We’re proactive in our defence, constantly hacking ourselves to improve our security posture and staying ahead of emerging threats. Our goal is to make Tide resilient against the ever-evolving threat landscape.

Identity is responsible for managing Tide's staff identity platform, ensuring that access to systems and infrastructure is secure, seamless, and aligned with modern security practices. The team uses strategies like zero trust, multi-factor authentication, and granular role-based access controls to safeguard our internal operations.

While each area has its own focus, collaboration is key - it's why we share the same Slack channel and hold our standups together as one cohesive team, ensuring alignment and seamless communication across all security functions.

ABOUT THE ROLE

As a Senior Threat Intelligence Engineer at Tide, you’ll join an ambitious team of highly motivated, talented Tideans who love to collaborate and are driven by helping people achieve their business ambitions. 

We live and breathe our values, which are to put our members first, work as one team and be data-driven, as part of our team, they’ll matter to you too. You'll also help take our security processes to the next level. 

Our scaling security team is responsible for securing Tide, our Tideans and our Members. Threat intelligence has emerged and evolved to meet the needs of the Threat Detection & Response team and others managing security risk for Tide. A Threat Intelligence Engineer at Tide will focus on a strategy that includes:

• Strategic threat intelligence tailored to executive audiences increases awareness of cybersecurity risk, and supports sound risk decision making by organisational leadership.
• Incremental program growth to provide quick wins with direct incident support and evolve into a threat intelligence platform to track and inform stakeholders.
• Tactical and operational threat intelligence to guide decision making during an incident investigation and threat detection development.

As a Senior Threat Intelligence Engineer you’ll be:

• Providing Strategic Threat Insights, Broad brush trends & Intel focused on the Fintech/Banking space.
• Providing Tactical Threat Insights, TTP, IoCs and actionable intelligence that can be consumed programmatically.
• Identifying, Implement & Manage External Intelligence Sources.
• Working on the Implementation and maintenance of our security threat intelligence tooling.
• Using Open source intelligence to investigate and identify potential threats.
• Building upon our security threat intelligence capabilities.
• Evaluating the impact of current security trends, advisories, publications, and academic research.
• Build tooling for internal use that enables the team to operate at high speed and scale.
• Writing and managing indicators of compromise.
• Supporting response, triaging, and investigating potential incidents across Tide systems.
• Implementing security orchestration and automation on top of existing solutions.
• Contributing Intelligence to the vulnerability management and triage program.

What makes you a great fit: 

• Having 4+ years of experience in Cloud/Enterprise Security.
• Strong knowledge of threat intelligence methods, standards, processes and industry-standard intelligence lifecycle approach.
• 2+ years of scripting/coding (Python, Javascript, Typescript, Go etc.)
• Experienced in operational security, threat detection and incident response.
• Writing strategic intelligence briefings.
• Authoring tactical technical intelligence.
• Writing and triaging production security alerts against large data sets, ideally with a SIEM solution like Chronicle, Splunk, Sentinel, or Panther.
• Familiarity with common techniques and tactics used by malware and threat actors and the industry-standard lexicon for discussing such threats (e.g. MITRE ATT&CK, Diamond Model etc.)
• Experience with working on AWS workloads.
• Experience mentoring other engineers in security.
• Able to act as a cheerleader and champion for security.
• Ability to thrive and succeed in a dynamic, fast-growing startup environment.
• Passion for information security.
• Hands-on attitude and the ability to drive solutions to completion.
• Experience with automation.
• Excellent oral and written communication skills.

WHAT YOU WILL GET IN RETURN

• Flexible working options
• Share options 
• Group Life Insurance 
• Vitality Health Insurance, with a proactive focus on mental and physical wellbeing
• 25 days holiday with the ability to buy extra days
• 3 days for L&D or volunteering time off per year
• We invest in your development with a £1,000 professional L&D budget per year (may be lower for A1-A2 folks in India Region, UK/ Europe Region and PCS UK sales team)
• Pension contributions: Tide will pay 3.00% of your pensionable earnings (capped to an annual salary of £44,030, known as qualifying earnings) into your pension each pay period
• Access to ‘salary sacrifice’ benefits such as:
  • Nursery: We’ve partnered with YellowNest to help reduce nursery costs — you could save up to 47% on fees! 
  • Cycle to Work: We’ve partnered with GCI to make the most of the Green Transport Plan Initiative and associated tax concession offered by the Government.
• Spacious brand-new office near Old Street with an all-day snacks bar
• Enhanced family-friendly leave
• Sabbatical leave 

TIDEAN WAYS OF WORKING

At Tide, we champion a flexible workplace model that supports both in-person and remote work to cater to the specific needs of our different teams. 

While remote work is supported, we believe in the power of face-to-face interactions to foster team spirit and collaboration. Our offices are designed as hubs for innovation and team-building, where we encourage regular in-person gatherings to foster a strong sense of community.

#LI-CC1 #LI-Remote