Why This Job is Featured on The SaaS Jobs
This Senior Cloud Security Threat Detection Developer role stands out in the SaaS ecosystem because it sits where cloud-native product delivery and security engineering intersect. With AWS as the core environment and close ties to both Platform Engineering and a Security Operations Center, the work reflects how modern SaaS companies operationalise security as part of the infrastructure lifecycle rather than as a separate, reactive function.
For a long-term SaaS career, the value is in building repeatable detection capabilities that scale with multi-tenant cloud platforms. Experience integrating detection and monitoring via Infrastructure-as-Code, and automating responses through SIEM and SOAR tooling, translates directly to other SaaS environments that depend on consistent controls across frequent deployments. The emphasis on tuning detections, enriching alerts, and improving investigation speed also develops practical judgement around signal quality and operational resilience.
This position is best suited to someone who prefers engineering-led security work over policy-heavy programs, and who enjoys partnering across platform and operations teams to ship maintainable security outcomes. It will fit professionals who like deep AWS problem-solving, can express detections as code, and want to be seen as a technical reference point while still collaborating hands-on with incident workflows.
The section above is editorial commentary from The SaaS Jobs, provided to help SaaS professionals understand the role in a broader industry context.
Job Description
Design threat detection at cloud scale.
At Coveo, we’re building advanced security engineering capabilities to protect our people, platforms, and customers. As a Senior Cloud Threat Detection Developer, you will design and implement detection strategies deeply integrated into our cloud environments. You’ll be part of the Security Engineering team, collaborating closely with Platform Engineering and our Security Operations Center to build scalable, automated, and resilient detection solutions.
This role combines deep cloud infrastructure expertise with threat detection engineering. You’ll help us reduce blind spots, validate our security posture, and empower teams across Coveo to stay ahead of emerging threats.
As our Senior Cloud Threat Detection Developer, you will:
Build and maintain scalable detection capabilities leveraging AWS services.
Collaborate with Platform Engineering to integrate detection and monitoring into AWS infrastructure lifecycle using Infrastructure-as-Code (Terraform, CloudFormation).
Partner with the SOC team to tune detections, enrich alerts, and accelerate incident investigations.
Implement and automate detections using existing platforms and services such as XSIAM, XSOAR, and AWS-native tools, ensuring consistency, maintainability, and efficient deployment.
Act as a subject-matter expert in AWS security and cloud threat detection, mentoring peers and supporting engineering initiatives.
Here is what will qualify you for the role:
5+ years of experience in a similar role of threat detections related to security.
Expert-level knowledge of cloud infrastructure, including IAM policies, security services, networking, and observability.
Proven experience building and tuning threat detections in SIEMs, SOARs and cloud-native logging.
Strong proficiency in Python or another scripting language for automation and engineering.
What would make you stand out:
Experience implementing detection pipelines with Infrastructure-as-Code (Terraform strongly preferred).
Knowledge of Kubernetes/container detection and logging.
Experience with purple-team or adversary emulation exercises to validate detections.
Contributions to detection-as-code frameworks, open-source projects, or security research.
Do you think you can bring this role to life?
You don’t need to check every single box; passion goes a long way and we appreciate that skillsets are transferable.
Send us your application, we want to get to know you!
Join the Coveolife!
We encourage all qualified candidates to apply regardless of, for example, age, gender, disability, gaps in CV, national or ethnic background. We know that applying for a new role is a lot of work and we really appreciate your time.
li-hybrid
