Senior Cloud Security Threat Detection Developer

Design threat detection at cloud scale.

At Coveo, we’re building advanced security engineering capabilities to protect our people, platforms, and customers. As a Senior Cloud Threat Detection Developer, you will design and implement detection strategies deeply integrated into our cloud environments. You’ll be part of the Security Engineering team, collaborating closely with Platform Engineering and our Security Operations Center to build scalable, automated, and resilient detection solutions.

This role combines deep cloud infrastructure expertise with threat detection engineering. You’ll help us reduce blind spots, validate our security posture, and empower teams across Coveo to stay ahead of emerging threats.

• Build and maintain scalable detection capabilities leveraging AWS services.
• Collaborate with Platform Engineering to integrate detection and monitoring into AWS infrastructure lifecycle using Infrastructure-as-Code (Terraform, CloudFormation).
• Partner with the SOC team to tune detections, enrich alerts, and accelerate incident investigations.
• Implement and automate detections using existing platforms and services such as XSIAM, XSOAR, and AWS-native tools, ensuring consistency, maintainability, and efficient deployment.
• Act as a subject-matter expert in AWS security and cloud threat detection, mentoring peers and supporting engineering initiatives.

• 5+ years of experience in a similar role of threat detections related to security.
• Expert-level knowledge of cloud infrastructure, including IAM policies, security services, networking, and observability.
• Proven experience building and tuning threat detections in SIEMs, SOARs and cloud-native logging.
• Strong proficiency in Python or another scripting language for automation and engineering.

• Experience implementing detection pipelines with Infrastructure-as-Code (Terraform strongly preferred).
• Knowledge of Kubernetes / container detection and logging.
• Experience with purple-team or adversary emulation exercises to validate detections.
• Contributions to detection-as-code frameworks, open-source projects, or security research.

Do you think you can bring this role to life?

You don’t need to check every single box; passion goes a long way and we appreciate that skillsets are transferable.

Send us your application, we want to get to know you!

• In-person: This role requires you to be in the office full-time, whether it be at our Quebec, Montreal, Weert, or London locations. Our modern infrastructures are designed to enhance cross-team collaboration and promote overall well-being.
• Hybrid: Our offices in Quebec City, Montreal, London and Weert are designed to foster collaboration and your well-being. We gather there on our pillar days two times a week to strengthen in-person interactions and encourage creativity, all while providing you with the flexibility of a hybrid environment.
• Remote: We hire from all over the world because the diversity of backgrounds fuels our continuous innovation. Our benefits will enable you to work comfortably from home, but you may be required to travel to attend our in-person team-building events.

We encourage all qualified candidates to apply regardless of, for example, age, gender, disability, gaps in CV, national or ethnic background. Coveo is a Quebec-based company, pioneer in AI-powered search and recommendations. We are committed to creating a collaborative, diverse and trusting place to work.