Threat Detection and Response Engineer

At Thought Machine, we are on a bold mission to liberate the world’s banks from legacy technology. Our innovative core and payments technology, designed to run natively in the cloud, is setting the foundation for modern banking.Having experienced rapid growth, our team now exceeds 550 talented individuals across our offices in London, New York, Singapore, Sy…

About Our TeamAt OpenAI, security serves as the cornerstone of our commitment to harnessing artificial general intelligence for the betterment of humanity. Our dedicated Security team safeguards our innovative technologies, talented personnel, and exceptional products. With a strong focus on impactful solutions, we prioritize enabling our researchers, anticipating future technological advancements, and nurturing a robust security culture.About the PositionWe are seeking a proactive Security Engineer to join our dynamic team of engineers and researchers in developing, operating, and securing groundbreaking AI technologies. This role will specialize in Detection & Response, encompassing infrastructure and operational responsibilities, while also contributing as a versatile team member across our Security initiatives. Your key responsibilities will include:Leading projects across essential security domains such as Application Security, Infrastructure Security, Offensive Security, and Detection & Response.Creating innovative solutions to address unique security challenges.Collaborating on pioneering AI research and utilizing AI technologies to enhance OpenAI's security framework.This position is based in London, UK, employing a hybrid work model that includes three days in the office per week. We also provide relocation assistance for new hires.Your Responsibilities Will Include:Innovating within the Detection and Response infrastructure.Developing tools for managing the lifecycle of detection rules.Creating, evaluating, and fine-tuning detection rules to ensure effective, sustainable operations.Automating manual incident response processes.Ensuring comprehensive visibility and control of OpenAI’s endpoint fleet (macOS, Windows).Enhancing identity access management (IAM), device management, productivity tools, and public cloud environments (e.g., AWS, Microsoft Azure).You Are a Great Fit if You Have:Experience in security or a related field.Familiarity with Microsoft Azure and/or other cloud infrastructure platforms.Knowledge of contemporary adversary tactics, techniques, and procedures.

Role Overview Writer is hiring a Security Engineer focused on Detection and Response for the London office. This position centers on protecting systems and data by identifying, analyzing, and mitigating security threats. What You Will Do Monitor for suspicious activity and potential breaches across Writer’s infrastructure. Analyze incidents and coordinate responses to minimize risk and impact. Work with fellow engineers and analysts to design and implement security measures. Help select and refine tools and processes for incident detection and response. Collaboration and Impact This role works closely with the broader cybersecurity team. Decisions and recommendations from this position directly influence Writer’s security posture and resilience against attacks.

About Our TeamAt OpenAI, we prioritize security as a fundamental aspect of our mission to ensure that artificial general intelligence benefits all of humanity. Our Threat Intelligence team is dedicated to safeguarding OpenAI's technology, personnel, research, and infrastructure. We proactively identify and neutralize adversaries who aim to compromise our systems or misuse our models. Through sophisticated threat investigations, we build tools to enhance our analysis capabilities and deliver intelligence that informs our security strategy, providing leadership with timely, risk-aware insights. Our approach combines technical expertise, investigative rigor, and strong cross-functional collaboration to uncover threats and drive impactful outcomes across OpenAI's security and research domains.About the RoleAs a Technical Threat Investigator at OpenAI, you will play a crucial role in defending the company against advanced adversaries targeting OpenAI and the wider ecosystem, as well as those attempting to exploit our models for cyber operations.This role involves deep investigative work. You will conduct complex, end-to-end investigations into sophisticated threat actors, analyzing their behaviors, infrastructure, and emerging techniques, particularly how they integrate AI into their workflows. Your insights will be vital in proactively identifying malicious activities and enhancing detection, disruption, enforcement, and safety measures across the organization.You will convert your investigative findings into scalable solutions that produce a lasting impact. This includes developing and maintaining lightweight tools, automating processes where beneficial, and establishing AI-assisted workflows to streamline investigations, making them faster, more repeatable, and more effective over time.Key Responsibilities:Conduct thorough, end-to-end investigations into advanced threat actors interacting with OpenAI's models, products, and ecosystem.Adopt an adversarial mindset to model attacker behavior, anticipate misuse patterns, and proactively hunt, identify, and disrupt malicious activities.Utilize internal telemetry, OSINT, vendor data, and proprietary safety systems to generate high-confidence findings regarding adversarial use of our models in cyber operations, platform abuse, and threats aimed at OpenAI.Translate investigative insights into tangible improvements across detection, enforcement, intelligence, and safety processes.Develop tools, scripts, and automations, and implement AI-assisted workflows to enhance investigation efficiency.

At Moonshot, we are committed to empowering marginalized communities—including minority ethnic groups, individuals from working-class backgrounds, women, people with disabilities, and members of the LGBTQIA+ community. We actively encourage applications from individuals who identify with these communities or other underrepresented groups. A diverse workforce is key to understanding the complexities behind violent extremism and online harms, and it enhances our ability to combat these issues effectively.Note: Candidates must successfully complete a police check and obtain SC-level security clearance, requiring a minimum of three years’ continuous residency in the UK within the past five years.About the Role:Moonshot is seeking a dynamic Threat Intelligence Manager to lead a team in the execution of complex threat monitoring projects for high-profile clients. In this role, you will oversee a team of analysts, ensuring timely and effective project deliveries while enhancing our research methodologies. You will collaborate closely with our product engineering team to refine existing techniques and develop innovative technical solutions.This high-paced operational position demands excellent project management skills and a strong understanding of OSINT tools and techniques. Your primary focus will be to ensure the delivery of high-quality client outputs while continuously improving the technical infrastructure that supports our monitoring efforts.Key Responsibilities:Manage the daily operations of the Threat Monitoring team and oversee project delivery across a diverse client portfolio.Assign tasks to analysts, balancing workloads to ensure optimal coverage for all clients.Create and maintain delivery schedules tailored to various reporting cadences (daily, weekly, monthly, ad-hoc).Produce high-quality intelligence reports and provide constructive feedback to maintain analytical excellence within the team of five analysts.Address operational issues promptly, escalating project risks as necessary.Coordinate rapid-response reporting for threats that meet escalation criteria.

Blockchain.com is at the forefront of revolutionizing the financial landscape. As a leading global cryptocurrency platform, we empower millions to securely engage with digital assets. Since our launch in 2011, we have garnered the trust of over 90 million wallet holders and facilitated more than $1 trillion in crypto transactions.Blockchain.com is the premier software platform for digital assets, providing the world's most extensive production blockchain platform. Our mission is to drive innovation, foster creativity, and build a transparent and equitable financial future through cutting-edge software development.We are seeking talented software engineers from diverse technical backgrounds with a solid history of designing scalable, reliable, and high-performance systems. In this pivotal role as a Senior Back-End Engineer, you will lead technical discussions, influence strategic decisions, and contribute to the team's growth by championing exemplary engineering practices.

Join our dynamic team at Sibyline Ltd as an Embedded Threat Intelligence Analyst. In this role, you will be at the forefront of analyzing and interpreting threat intelligence data to proactively safeguard organizations from potential cyber threats. Your expertise in embedded systems and threat analysis will be crucial in providing actionable insights and strategies to enhance security measures.We are looking for an enthusiastic individual with a strong foundation in threat intelligence methodologies and the ability to work collaboratively within a fast-paced environment. Your contributions will directly impact our clients' security posture and overall resilience against cyber threats.

About the Position We are seeking a proactive Cybersecurity Engineer to enhance the security framework of our applications, data, infrastructure, and processes within our dedicated Cybersecurity team. This role merges hands-on technical skills to identify and mitigate vulnerabilities with the ability to collaborate effectively across various teams. You will guide your peers in assessing the security implications of design choices and ensure that security is integrated into applications from inception. Utilizing your offensive security expertise, you will pinpoint potential threats and delve into intricate technical aspects to craft tailored security solutions while navigating complex challenges with innovative approaches. Practical experience in threat modeling is essential, along with the capacity to translate security principles into tangible architectural advancements. Additionally, you will engage with system owners who possess in-depth knowledge of their applications but may overlook potential vulnerabilities. Your role will involve collaborating with them to identify and resolve these issues, weighing the balance between security measures and business needs. As part of the Cybersecurity team, you'll collaborate with a talented group of programmers and security professionals dedicated to safeguarding the firm. Our work encompasses a broad spectrum of topics, including software engineering, DevOps, risk analysis, security governance, and cyber awareness.

About 10a Labs: At 10a Labs, we serve as the premier safety and threat-intelligence layer, relied upon by cutting-edge AI laboratories, high-growth AI companies, Fortune 10 enterprises, and leading global technology platforms. Our expertise in adversarial red teaming, model evaluations, and intelligence gathering empowers engineering, safety, and security teams to outpace evolving threats while ensuring the safe deployment of AI systems.The Investigations Team at 10a Labs is seeking additional support to effectively respond to critical safety incidents and conduct thorough investigations across various abuse areas, including but not limited to Violence, Hate, Mental Health, CBRNE, Child Safety, Cyber Abuse, and more.About the Role:As a Threat Investigator, you will play a key role in supporting our London-based Investigations Team covering Europe, the Middle East, and Africa (EMEA). Your responsibilities will include identifying and responding to malicious activities and abuse on our platform, investigating suspicious behaviors, drafting detailed reports based on your findings, and providing actionable recommendations. This role necessitates a strong technical background in investigating threat actors, harmful behaviors, and cyber abuse, alongside proficiency in SQL and Python for data querying, transformation, and analysis. You will also manage escalations and reactive leads, including those that may not be identified by our current safety systems.Investigations may involve exposure to sensitive and distressing content, including sexual, violent, or otherwise disturbing material.This position includes an on-call component, requiring you to address urgent escalations outside of standard working hours, which may occasionally include evenings and weekends. The typical on-call rotation consists of 7 consecutive days every 2 months, though this may vary based on operational requirements, and candidates should be prepared to be flexible.Key Responsibilities:Proactively identify and track malicious actors on our platform.Investigate potentially policy-violating activities by querying internal data sources (using SQL and Python) and cross-referencing open-source information (OSINT).Document and communicate investigative findings to internal stakeholders.

Join Canva as a Senior Security Engineer specializing in Incident Response, where your expertise will play a crucial role in safeguarding our digital assets. You will lead the charge in investigating security incidents, implementing security measures, and collaborating with cross-functional teams to strengthen our overall security posture. Your analytical skills and proactive approach will ensure that Canva remains a safe and secure platform for our users.

At Trustpilot, we are on an exciting journey as a profitable, high-growth FTSE-250 company with a bold vision: to be the universal symbol of trust. We operate the largest independent consumer review platform globally, and while we've achieved significant milestones, there's much more exhilarating work ahead. Join us at the forefront of trust!We are in search of an inquisitive and analytical Fraud Detection Analyst to become part of our global Fraud & Investigations team. In this role, you will analyze data, identify trends, and formulate detection rules that play a crucial role in preventing fraud, thereby protecting consumers, businesses, and the integrity of our platform.You'll tackle complex and often ambiguous challenges in the dynamic landscape of online trust. If you are passionate about problem-solving, delving into data, and making a significant impact, this is your opportunity.Joining a collaborative and inquisitive team that values transparency, fairness, and humor, you will contribute to the broader Trust & Transparency team, driving change across the organization and helping us achieve our vision of being the online symbol of trust.Key Responsibilities:Analyze fraud patterns and develop a comprehensive understanding of fraudulent behavior on our platform using SQL, Google BigQuery, and Google Looker.Create rules based on your analysis to mitigate fraudulent activities across our platform.Investigate escalated cases related to potential misuse of our platform and support media, legal, and customer inquiries.Collaborate with data science experts to enhance our technological and procedural methods for identifying fraud.Work closely with engineering teams to improve internal tools and databases that bolster our fraud prevention efforts.Serve as a key resource for other departments by analyzing customer and reviewer behavior on the platform.Communicate findings from analyses and investigations to various stakeholders across the department and the wider company.Report directly to our Lead Fraud & Investigation Analyst.

Recorded Future brings together over 1,000 intelligence professionals to support more than 1,900 clients worldwide. The company focuses on providing intelligence solutions at a global scale. Role overview The Incident Response Analyst joins the Incident Response Team in the Enterprise Security division based in London. This position covers several key areas: security operations, incident response, risk management, compliance, and security training. The team works to protect the organization and its clients by responding to security incidents and strengthening overall security posture. What you will do Assist with day-to-day security operations and incident response tasks Support ongoing risk management and compliance activities Contribute to security awareness and training programs Requirements Strong foundational understanding of security principles across multiple areas Genuine interest in building a career in cybersecurity Proactive mindset for problem-solving and continuous learning This position is a good fit for junior professionals who want to develop their skills and grow within the cybersecurity sector.

DC Advisory is a leading international investment bank dedicated to making a positive impact in the financial industry. With a robust global presence, we connect our clients to over 750 talented professionals across 24 locations in Asia, Europe, and the US. Our industry-specialized teams provide customized, independent advice on mergers and acquisitions, debt issuances and restructurings, private capital markets, secondary advisory services, and unparalleled insights into Asian investments. For further details, please explore our About Us page.As a proud member of Daiwa Securities Group Inc., DC Advisory benefits from a committed and long-standing investor, enabling us to focus on the needs of our diverse global clientele. Learn more about our partnership here.Position OverviewThe Corporate Responsibility Analyst is an entry-level position designed for individuals passionate about shaping corporate responsibility strategies within a progressive, people-oriented investment bank. Reporting directly to the Corporate Responsibility Director, the Analyst will be instrumental in implementing the firm’s global Corporate Responsibility (CR) strategy, reflecting our commitment to “Making a Difference.”This role provides extensive exposure to key areas including sustainability, environmental stewardship, diversity and inclusion, employee wellbeing, community outreach, and ethical business practices. The Analyst will assist with data gathering, analysis, and reporting, while also playing a role in developing initiatives that position Corporate Responsibility as a core competitive advantage for the firm.Join us for an exceptional opportunity to gain practical experience in a dynamic CR function and collaborate closely with senior leadership across the organization.Key ResponsibilitiesAssist in executing the global Corporate Responsibility (CR) strategy, in line with our “Making a Difference” commitment.Gather, analyze, and manage data related to the CR program, encompassing environmental impact, carbon footprint, social influence, diversity and inclusion, and wellbeing metrics.Support the creation of internal and external CR and sustainability reports, ensuring precision, consistency, and clarity.Track progress against CR objectives, commitments, and performance indicators, highlighting insights and potential risks as necessary.Contribute to the implementation of CR initiatives across sustainability, inclusion and diversity, employee wellbeing, community engagement, and corporate social responsibility.Develop materials for CR deliverables, such as presentations, dashboards, briefs, and case studies.Conduct research and analysis to guide the development of new CR initiatives, policies, and partnerships.

Join Waymo as an International Manager of Event Response, where you will lead our global efforts in managing event-related incidents and responses. You will be at the forefront of ensuring the safety and efficiency of our operations, collaborating with cross-functional teams to streamline processes and enhance our event response strategies. Your expertise will be crucial in guiding our international initiatives and improving our service delivery across various regions.

About WPPWPP is a trusted partner for the world’s leading brands, combining cutting-edge media intelligence with data solutions, world-class creativity, next-generation production, transformative enterprise solutions, and expert strategic counsel. Powered by exceptional talent and our innovative marketing platform, WPP Open, we assist clients in navigating change, seizing opportunities, and achieving transformative growth. For more information, visit WPP.com.6125 - Director of Brand Safety & Responsible InvestmentAbout WPP MediaWPP is the creative transformation company, utilizing the power of creativity to forge better futures for our people, planet, clients, and communities. For more information, visit wpp.com.WPP Media represents WPP’s global media collective. In an era where media pervades every aspect of life, we unite the best platforms, talent, and partners to create limitless growth opportunities. For more information, visit wppmedia.com.At WPP Media, we cherish the power of our culture and our people, which enables us to deliver exceptional experiences for our clients and each other. In this role, embracing WPP and WPP Media’s shared core values will be essential.

ASOS is looking for a Security Specialist in London with experience in Security Operations Center (SOC) activities and incident response. This role helps protect the company’s digital assets by monitoring for threats and managing security incidents as they arise. Main responsibilities Monitor company systems and networks to identify potential security threats and unusual activity. Respond to security incidents, coordinating with teams across the business to contain and resolve issues. Contribute to the development and maintenance of security policies, procedures, and incident response plans. Keep up to date with the latest security threats, vulnerabilities, and trends. Collaboration This position works closely with teams from different parts of the business to help safeguard ASOS’s systems and data.

About UsHello! We are Ravelin, a pioneering company in the realm of fraud detection, leveraging sophisticated machine learning and network analysis technologies to tackle significant challenges. Our mission is to enhance the safety of online transactions, empowering our clients to confidently serve their customers.We believe in enjoying our work while making a difference! Our team is known for its friendly atmosphere and strong cultural values rooted in empathy, ambition, unity, and integrity. We prioritize work/life balance and embrace a flat organizational structure across the company. Join us to rapidly expand your knowledge of cutting-edge technology while collaborating with some of the brightest and most amiable professionals in the industry - check out our Glassdoor reviews.If this resonates with you, we would be thrilled to hear from you! For more insight, visit our blog to see how you can contribute to preventing fraud and safeguarding the world’s leading online businesses.The RoleWe are on the lookout for a skilled Integration Engineer to guide our clients through the integration process. This role also includes line management responsibilities for other Integration Engineers, focusing on driving process enhancements within the team.As part of our Integrations team, you will collaborate closely with a Project Manager on client integrations, ensuring clients achieve optimal performance from Ravelin. Your innovative mindset will be crucial in enhancing the repeatability and scalability of our integration processes.In this position, you will act as a liaison between our internal data engineering, machine learning, and fraud analysis teams, ensuring seamless communication with our clients.Key ResponsibilitiesLead the establishment and refinement of best practices for Integration Engineers.Assist the Director of Integrations with initiatives focused on data quality and integration assessments.Line manage a team of Integration Engineers, providing guidance and coaching.Work directly with clients to navigate them through the integration process, comprehending their payment workflows and showcasing relevant product features.Conduct regular data quality evaluations and data wrangling throughout the integration process.Maintain proactive communication with clients to manage their expectations effectively.Collaborate with Data Scientists, Data Engineering, and Product teams to identify the best strategies to meet client goals.Evaluate existing integrations, follow up on client-flagged changes, address queries, and recommend improvements.

Who are we?At Ki Insurance, we are at the forefront of transforming the insurance landscape, covering everything from space shuttles to world tours, wind farms, and even the legs of footballers. Our mission is to digitally disrupt and revolutionize a 335-year-old industry.In partnership with Google and UCL, we have developed a cutting-edge platform that utilizes algorithms, machine learning, and large language models to deliver insurance quotes in mere seconds instead of days.As the largest global algorithmic insurance carrier and the fastest-growing syndicate in the Lloyd's of London market, Ki has achieved remarkable milestones, including being the first to generate $100 million in profit within just three years.Our teams bring diverse backgrounds and collaborate in an agile, cross-functional environment to create exceptional experiences for our customers. With ambitious goals ahead, we are seeking brilliant minds to challenge the status quo and help us reach new heights.Where you come in:As a Senior Security Operations Analyst, you will spearhead security operations activities, focusing on incident response for medium to high severity incidents, advanced threat hunting, and detection engineering. You will cultivate deep expertise in security monitoring and response, automate processes, mentor junior analysts, and influence security decisions across teams.Your role will require independent work on complex security challenges, upholding and enhancing security operations practices, and collaborating with engineering teams across Cloud Services, Infrastructure, and Product on detection, monitoring, and vulnerability management initiatives.This position also involves leveraging AI to build automation and agentic AI workflows responsibly, enhancing productivity while ensuring data protection and appropriate security controls.

Join AECOM as a Track Design Responsible Engineer, where you will play a pivotal role in shaping railway infrastructure projects. You will be responsible for the design and implementation of track systems, ensuring quality and compliance with industry standards. Collaborate with a dynamic team of professionals and contribute to innovative engineering solutions for our clients.

About incident.ioincident.io is the premier AI incident response platform designed to empower teams to significantly decrease incident response times and enhance service reliability. We consolidate on-call management, incident response, AI-driven Site Reliability Engineering (SRE), and status pages into a unified platform, equipping teams with all the tools necessary to respond swiftly, minimize downtime, and keep customers informed.Since our inception in 2021, we have assisted over 1,500 companies, including Netflix, Airbnb, and Block, in managing more than 500,000 incidents. Each month, tens of thousands of responders from Engineering, Product, and Support utilize incident.io to restore services swiftly, maintain alignment under pressure, and concentrate on what truly matters.We are a rapidly growing, ambitious team dedicated to our customers, product excellence, and delivering exceptional experiences. We have raised $100M from Index Ventures, Insight Partners, and Point Nine, alongside founders and executives from top-tier technology firms.The TeamOur engineers understand the urgency of incident response—they've experienced those late-night wake-up calls. Their mission is to transform those disruptive moments into a streamlined and manageable experience for engineering teams everywhere. They are among our product's most enthusiastic users, driven by an unwavering commitment to customer satisfaction.Whether they are crafting a feature that delights our users or addressing a feature request that simplifies workflows, they are always prepared to go the extra mile.Our primary technology stack includes Go, TypeScript with React, and PostgreSQL, deploying on Google Cloud Platform using GKE and Cloud SQL. We manage our infrastructure with Terraform and leverage BigQuery, Pub/Sub, and Cloud Storage. Monitoring and logging are implemented using Sentry, Grafana + Prometheus, and Kibana, along with CircleCI for automated testing and deployment.