GENERAL INFORMATION

Job Title
Threat Operations Security Engineer
City
London
Country
United Kingdom of Great Britain and Northern Ireland
Division
Engineering

DESCRIPTION

Thought Machine’s mission is bold – to properly and permanently rid the world’s banks of legacy technology. To achieve this, we have developed the foundations of modern banking and built core and payments technology which runs natively in the cloud. What we are attempting is hard and means we need great people working together to build great technology.
We have grown rapidly in the past few years – growing our team to more than 500 individuals across offices in London, New York, Singapore and Sydney. We have raised more than $500m in funding and are now valued at $2.7bn. Our investors include Molten Ventures, Eurazeo, Intesa Sanpaolo, Temasek, Nyca Partners, JPMorgan Chase, Standard Chartered, and more.
We have created a culture enabling our team to produce the best work in the industry, ensuring we have fun along the way. We’re regularly cited as having a fantastic workplace culture and have been recognised by Sifted magazine as having one of the highest Glassdoor ratings for a UK fintech company and the most generous employee share package in the industry. We’ve been named AltFi’s B2B Fintech of the Year, placed in the FinTech50, and named one of Europe’s fastest-growing companies by the Financial Times in 2023.
A Threat Operations Security Engineer is an individual contributor within the larger Threat Operations team. We desire engineers who can think creatively about security threats, how to detect them, and how to respond to them. We encourage exploration and an eagerness to share when there are unique ideas or perspective you can bring to a challenge.
The Threat Operations security team is focused on identifying threats, identifying security events, performing event analysis, responding to security incidents, and monitoring the security state of the environments at Thought Machine.

• Contribute to a programme of continuous threat assessment, intrusion detection and vulnerability review
• Develop, integrate, and operate security event detection and incident management services using Elasticsearch.
• Automate repeatable incident response workflows to minimise the amount of manual work required in incident response.
• Maintain documentation to ensure the repeatability and standardisation of incident response procedures.
• Respond to security incidents as they occur as part of an incident response rotation, managing incident response throughout the incident lifecycle
• Perform investigation and analysis of security incidents in collaboration with engineers across the company.
• Perform threat intelligence research to provide proactive insight into new threat vectors.
• Develop, integrate, and operate data and metric reporting on relevant security measures.
• Participate in the team on-call rotation (compensated).