Senior Security Engineer (Incident Response)

TL;DR

Senior Security Engineer (Incident Response): Leading incident response and threat detection across hirify.global's cloud-native infrastructure with an accent on coordinating security events from detection through resolution. Focus on proactively hunting for anomalous behavior, building detection rules, and developing security incident management tools.

Location: Hybrid in London, UK. While there is flexibility, candidates will be based at the hirify.global London campus, which serves as the HQ for Europe.

Company

hirify.global is a global visual communication platform that empowers everyone to design anything.

What you will do

• Lead incident response coordination and act as escalation point for security incidents.
• Monitor and investigate security threats across AWS, GCP, and hybrid environments, proactively hunting for anomalous behavior.
• Build and maintain detection rules, automation workflows, and response playbooks using detection-as-code.
• Develop tools and solutions for security incident alerting, management, and communication.
• Maintain comprehensive incident response documentation, lead post-incident reviews, and produce detailed reports.
• Champion security best practices across secure development, network security, and security operations.

Requirements

• Demonstrable experience in incident response, security operations, and coordinating security events from detection through resolution.
• Strong knowledge of cloud security architectures, attack techniques, and hands-on experience with cloud providers (AWS, GCP, or Azure).
• Extensive experience with endpoint detection and response (EDR) platforms for investigations, analysis, and response actions.
• Investigative mindset with ability to leverage OSINT techniques and solve ambiguous security problems.
• Ability to excel at documentation, communication, and stakeholder management while prioritizing multiple tasks.
• Comfortable working with Linux, macOS, and modern security tooling.

Nice to have

• Background in forensic acquisition and analysis, including maintaining chain of custody.
• Incident response in containerized and Kubernetes environments.
• Ability to perform static and dynamic malware analysis.
• Proficiency in scripting and programming languages (Python, Go, or similar).
• Experience with security automation platforms and SOAR tools.
• Familiarity with detection-as-code practices, version control workflows, MITRE ATT&CK framework, and threat intelligence platforms.

Culture & Benefits

• Equity packages.
• Inclusive parental leave policy that supports all parents and carers.
• An annual Vibe & Thrive allowance to support wellbeing, social connection, and office setup.
• Flexible leave options that empower you to be a force for good and recharge.
• A warm welcome from the Vibe team, amazing home-cooked food, and a variety of workspaces at the London campus.

Hiring process

• Interviews are conducted virtually.
• Hiring decisions are based on experience, skills, passion, and how you can enhance hirify.global and its culture.