Senior Threat Detection Engineer

The Cloud Security and Detection & Response team is responsible for identifying and addressing credible threats to our organization. Their work includes activities such as threat modeling, incident response, strengthening Miro’s overall cybersecurity posture, and proactively preventing potential threats. Key initiatives the team focuses on include: Developing custom detections for emerging and advanced cyber threats, collaborating with engineering teams to enhance their security practices and leading and coordinating responses during security incidents.  CSDR has an engineering/automation first mentality.

Miro is seeking a Senior Threat Detection Engineer to join our Cloud Security and Detection & Response team in Austin, TX. In this role, you will play a key part in proactively identifying potential threats, developing context-aware detection and response controls, and empowering internal teams to take ownership of their security. You’ll lead threat investigations, act as the technical expert during security incidents, and help drive continuous improvements to our detection and response capabilities.

• Design and implement advanced threat detection controls to identify and alert on suspicious or high-risk activities across Miro’s systems
• Act as an experienced incident responder, leading complex investigations and managing security incidents from initial detection through to resolution
• Continuously refine and optimize detection logic to stay ahead of evolving cyber threats
• Leverage internal and external threat intelligence sources to identify emerging threats and assess their relevance to Miro’s environment
• Collaborate with internal stakeholders to raise awareness of current and emerging threats, fostering a proactive security culture
• Analyze trends from detections and investigations to inform engineering practices and promote a "security by design" approach across the organization

• 5-7 years of experience in Security (2+ years Threat Detection/Threat Intelligence within SaaS Environment)
• Security Frameworks and Best Practices: Strong understanding of security frameworks and best practices, including knowledge of secure software development lifecycle (SDLC) processes.
• Tools and Technologies: Familiarity with tools and technologies used for threat detection, such as security analytics platforms, logging and monitoring tools, and alert workflow automation.
• Incident Handling: Experience with incident response processes, digital analysis, and forensics.
• Programming and Automation: Proficiency in programming languages such as Python and experience with infrastructure as code (IAC) tools like Terraform.
• Threat Intelligence and Hunting: Ability to gather and analyze threat intelligence, perform threat profiling, and conduct proactive threat hunting.

US:

• 401k matching + Competitive equity package
• Excellent Medical, Dental and Vision health benefits
• Fertility & Family Forming Benefits
• Flexible time off
• Lunch, snacks and drinks provided in the office
• Wellbeing benefit and WFH equipment allowance
• Annual learning and development allowance to grow your skills and career
• Up to $2,000 of charitable donation matches each year

The reasonably estimated salary range is specific to Austin and may not be applicable to other locations. The range for this role is $130.000 to $170.000. Final compensation and total package components will be based on individual factors such as the candidate's skills, qualifications, and experience.

Multi Location: Amsterdam / Berlin / Yerevan / London:

• Competitive equity package
• Lunch, snacks and drinks provided in the office
• Wellbeing benefit and WFH equipment allowance
• Annual learning and development allowance to grow your skills and career
• Opportunity to work for a globally diverse team