Thought Machine - Threat Detection and Response Engineer

• ssential • 1-2 years experience with logging and incident detection platforms, creating new detections, triaging alerts and conducting security investigations. • Experience in threat detection, incident response or threat intelligence • Experience in operating system logging for investigations (Windows Event Log, Sysmon, Journalctl or Auditd) • Comfortable using the command line in Linux or MacOS environments. • Creative thinking and analytical skills with focus on incident and threat investigations • Strong interpersonal and communication skills to support collaboration with other teams during investigations • Desirable • Familiarity with cloud or containers technology (AWS, GCP, Azure, Kubernetes, Docker) • Familiarity with Elasticsearch • Contributions to the security community (open source tools, public research, blogging, presentations, etc) • We actively hire candidates who demonstrate technical excellence in their field and welcome people of all ages and backgrounds, providing everyone with equal access to professional development. You are encouraged to apply even if your experience doesn't accurately match the job description. We also encourage applications from those with different abilities, including candidates with ADHD, autism, dyslexia or dyspraxia.