Threat Detection Engineer

Inclusion at Bumble Inc. 
Bumble Inc. is an equal opportunity employer and we strongly encourage people of all ages, colour, lesbian, gay, bisexual, transgender, queer and non-binary people, veterans, parents, people with disabilities, and neurodivergent people to apply. We're happy to make any reasonable adjustments that will help you feel more confident throughout the process, please don't hesitate to let us know how we can help.In your application, please feel free to note which pronouns you use (For example: she/her, he/him, they/them, etc).

At Bumble the security of our customers is a top priority. As a threat detection engineer, you should be mission-focused in protecting our users' data, our company’s infrastructure and our global operations.
You’ll be the first to respond to security events, typically occurring in three stages: threat detection, threat investigation, and timely response. You will work as part of a multidisciplinary team to solve puzzles of what bad actors are doing, and how to automate our systems and playbooks to better detect and enrich events. You should be tenacious with your curiosity both technically and organizationally about security risks, and work cross-functionally to resolve anything we don’t know. We routinely test our systems and you will have the opportunity to produce advanced techniques to correlate intelligence, event information and coordination systems like Slack to increase our defensive security posture.

Key Accountabilities

• Primarily responsible for security event monitoring, detection and response, as a part of a multi-disciplinary 24/7 on-call rota
• Eagerness to contribute across all stages of a security incident, from initial detection, triage and remediation
• Contribute to the organisation's vulnerability management program; including detection, analysis and supporting remediation.
• Identify, prototype and deploy technical solutions to automate event correlation and detection
• Operate with a focus to meet or exceed response SLAs; continuously seeking process improvements to achieve operational objectives
• Ensure incident identification, assessment, quantification, reporting, communication, mitigation and monitoring
• Contribute to establishing, developing, and revising processes to build and strengthen the overall company operational security posture
• Contribute to threat management, and threat modelling, identify threat vectors and develop use cases for security monitoring
• Contribute to the integration of standard and non-standard logs in the SIEM

Required Experience & Skills

• Proficient in security incident response and management
• Security knowledge of Linux and familiarity of macOS and Windows
• Experience in security device output, event and alert consumption
• Basic understanding of common threat defence coding languages such as Python or Go or experience in threat identification and response using other languages
• Knowledge of key log sources of OS, applications, databases and middleware to address security threats
• Strong and demonstrable practical experience responding to common threats such as malware, and social engineering. Experience must include effective use of threat artefacts, IOCs, and behavioural factors.
• Familiar with threats including DDOS, web and mobile application security risks
• Experience of security tooling within a corporate environment including, commercial sandboxes, proxies, DLP, OSINT, vulnerability management, cyber and vendor risk management
• Readiness to expand technical skill set, both through self-study and formal training

About you

• Your values align strongly with the Bumble Inc. values: Growth, Kindness, Equity, Accountability, and Honesty
• Motivation to solve problems, not to patch over quick fixes
• Being on-call shouldn’t be a burden to you or to team members. We want to be curious about our defences and filter noise to automate signal
• Ability to multi-task and handle high-pressure situations with key stakeholders
• Excellent analytical, problem solving and interpersonal skills
• Readiness to expand technical skill set, both through self-study and formal training
• Willingness to learn to perform threat detection and enrichment through the use of data science tooling and techniques

About Us
Bumble Inc. is the parent company of Bumble, Badoo, Fruitz and Official. The Bumble platform enables people to build healthy and equitable relationships, through kind connections. Founded by Whitney Wolfe Herd in 2014, Bumble was one of the first dating apps built with women at the centre and connects people across dating (Bumble Date), friendship (Bumble BFF) and professional networking (Bumble Bizz). Badoo, which was founded in 2006, is one of the pioneers of web and mobile dating products. Fruitz, founded in 2017, encourages open and honest communication of dating intentions through playful fruit metaphors. Official is an app for couples that promotes open and honest communication between partners and was founded in 2020.