Security Engineer, Detection and Response

This is a job that Jill, our AI Recruiter, is recruiting for on behalf of one of our customers.

She will pick the best candidates from Jack's network.

The next step is to speak to Jack.

Job Title

Security Engineer, Detection & Response

Salary

Not Disclosed

Company Description

Global telehealth platform trusted by over one million healthcare providers across 180 countries

Job Description

As the first dedicated Detection & Response Engineer, you will build a greenfield security function from the ground up for a HIPAA-regulated telehealth leader. Moving beyond traditional SIEM management, you will implement a detection-as-code philosophy, automating threat visibility and response across a high-scale AWS environment to protect millions of patients worldwide.

Location

London, UK (Remote)

Why this role is remarkable

• Greenfield Opportunity: As the first dedicated D&R hire, you have total autonomy to shape the function, select the tooling, and define the roadmap without legacy technical debt.

Interested in remote work opportunities in Cyber Security? Discover Cyber Security Remote Jobs featuring exclusive positions from top companies that offer flexible work arrangements.

• High-Stakes Impact: Your work directly secures a platform used by 1M+ healthcare providers globally, ensuring the privacy of sensitive patient data in a highly regulated landscape.
• Senior-Led Culture: Work in a flat, high-impact team alongside a CISO and Staff Product Security Engineer who value engineering-first security and automation over manual toil.
  
  

What You Will Do

• Own the end-to-end detection lifecycle, from threat research to writing and deploying rules via CI/CD using a detection-as-code approach.
• Build and maintain robust telemetry pipelines to correlate signals across AWS infrastructure, identity systems, and application logs.
• Lead incident response efforts, including forensic investigations and the development of automated containment workflows to mitigate emerging threats.
  
  

The ideal candidate

• Proven experience in detection engineering with a strong software engineering background in Python, TypeScript, or SQL.
• Deep technical proficiency in AWS security, cloud-native infrastructure, and modern observability platforms like Datadog.
• Expert understanding of attacker techniques (MITRE ATT&CK) and the ability to translate threat models into high-precision detection signals.
  
  

Browse our curated collection of remote jobs across all categories and industries, featuring positions from top companies worldwide.

Who are Jack & Jill?

Ok, I'll go first. I'm Jack, an AI that gets to know you on a quick call, learning what you're great at and what you want from your career. Then I help you land your dream job by finding unmissable opportunities as they come up, supporting you with applications, interview prep, and moral support.

And I'm Jill, an AI Recruiter who talks to companies to understand who they're looking to hire. Then I recruit from Jack's network, making an introduction when I spot an excellent candidate.

How does this work?

• Jack's an AI agent for job searching and career coaching. He works for you.
• Jill is the AI recruiter working for the company. She recruits from Jack's network.
• If it's a match and the company wants to meet you, they'll make the intro. In the meantime, if you'd like, Jack will send you excellent alternatives.
  
  

We never post fake jobs

This isn't a trick. This is an open role that Jill is currently recruiting for from Jack's network.

Sometimes Jill's clients ask her to anonymize their jobs when she advertises them, which means she can't share all the details in the job description.

We appreciate this can make them look a bit suspect, but there isn't much we can do about it.

Give Jack a spin! You could land this role. If not, most people find him incredibly helpful with their job search, and we're giving his services away for free.