Join us and help shape the security platforms and services that protect the businesses we serve.

We are building and improving modern security capabilities across SIEM, SOAR, exposure management, detection engineering, threat hunting, cloud security, and security automation. This is work with real impact: designing architectures, improving visibility, reducing risk, and helping customers get more value from the security platforms they depend on.

You will take ownership of key areas of security architecture, working across engineering, SOC, and customer teams. You will help define how security data is collected, enriched, detected on, automated, and presented to analysts and customers.

• Help define technical direction for security platform architecture across SIEM, SOAR, EDR, cloud, and supporting services.

• Design scalable patterns for log ingestion, detection engineering, alert handling, and automation.

• Help shape secure, supportable architectures for internal and customer-facing security tooling.

• Provide technical governance across platform changes, integrations, and major customer designs.

• Support the design and improvement of detection, response, and automation capabilities.

• Work with engineering teams to improve data quality, telemetry coverage, and operational reliability.

• Help define standards for security content, use cases, parsers, integrations, and platform configuration.

• Review technical designs for risks, gaps, scalability, maintainability, and operational impact.

• Mentor engineers and analysts on security architecture, platform design, and defensive engineering practices.

• Lead technical reviews and help establish repeatable standards.

• Help raise the quality of architecture, documentation, and delivery across the Team

• Demonstrated experience in security architecture, or hands-on security engineering with a strong design mindset.

• Deep experience with at least one major security vendor ecosystem, such as Microsoft, CrowdStrike, SentinelOne, Palo Alto, or similar.

• Hands-on knowledge of SIEM, SOAR, EDR, cloud security, or related security platforms.

• Experience designing and documenting security logging, detection, response, and automation patterns.

• Ability to translate operational security problems into practical technical designs.

• Comfortable working with APIs, data models, integrations, and modern cloud/platform concepts.

• Strong communication skills and the ability to work across technical and nontechnical teams.

• Experience with Azure, or similar cloud platform.

• Experience with detection engineering, threat hunting, or SOC tooling.

• Familiarity with CI/CD, infrastructure as code, containers, or cloud deployment patterns

• Experience mentoring engineers, analysts, or small technical teams.

• Experience working in an MSSP, consultancy, or customer-facing security enviroment.

• The chance to shape security platforms and services that are used every day.

• Real architectural ownership across greenfield work.

• The opportunity to influence how modern defensive security capabilities are built and operated

• A role with a clear link between technical decisions and customer security outcomes.