Senior Threat Detection Engineer - Intelligence

Miro is a visual workspace for innovation that enables distributed teams to build the next big thing. They are seeking a Senior Threat Detection & Intelligence Engineer to help understand adversaries, detect threats early, and lead investigations, focusing on actionable detections and security by design.

Responsibilities:

• Track emerging threats, attacker techniques, and campaigns relevant to cloud and SaaS
• Turn threat intelligence into practical detection strategies and attack hypotheses
• Design and maintain context-aware detections across cloud, identity, and application layers
• Lead deep investigations, from first signal to root cause and remediation
• Act as a technical lead during security incidents, guiding response and decision-making
• Analyze detection and investigation trends to improve preventative controls
• Partner with engineering teams to raise security maturity across the organization

Requirements:

• 5–7 years in security, with 2+ years in threat detection, threat intelligence, or investigations
• Experience in cloud-native SaaS environments (AWS strongly preferred)
• Strong investigation skills and ability to analyze attacker behavior
• Experience using threat intelligence to inform detection and response
• Proficiency in Python and comfort automating security workflows
• Experience querying large datasets (SQL or similar)
• Familiarity with cloud security telemetry, logging, and detection platforms
• Solid understanding of incident response and digital forensics
• Experience with Infrastructure as Code (Terraform or similar)