Security Engineer - Security Operations

About Us

Perk (formerly TravelPerk) is the intelligent platform for travel and spend management. Built to tackle the time-consuming, manual work that gets in the way of real work, our tools automate everything from travel bookings to expenses, invoice processing, and more. By eliminating this shadow work that wastes hours, erodes morale, and saps innovation, we’re on a mission to power real work, with real impact.

We’re trusted by more than 10,000 companies worldwide, including Wise, On Running, Breitling, and Fabletics, and we’re tackling the 7 hours of lost productivity per employee each week, a $1.7 trillion problem.

Founded in 2015, Perk has grown into a global company of more than 1,800 people across 12 offices globally, with headquarters in London and Boston. We combine innovation, control, and simplicity to transform how businesses work and how people feel at work.

At Perk, we’re driven by our values, like being an owner, delivering a 7-star experience, and working as one team. We value curiosity, purpose, and mindset, not just knowledge, to unlock the power in your potential. Our talent team brings together leading minds from the travel and SaaS industries, representing over 70 countries. If you’re excited about having a real impact and shaping how millions of people experience work, we’d love you on the team.

Visit www.perk.com to learn more.

As a Security Operations Engineer at TravelPerk, you will be responsible for designing, implementing, and maintaining advanced threat detection solutions. Collaborating with the TechOps/IT team and various engineering squads at TravelPerk, you will ensure robust security measures are applied, and capabilities are built to support comprehensive security logging and monitoring across our products and enterprise.

If you are passionate about staying ahead of emerging threats and possess strong technical expertise in security operations, this is an exciting opportunity to make a significant impact.

• Enhance threat detection & response by designing, implementing, and optimizing security tools, detection mechanisms, and secure configurations to identify and mitigate cybersecurity threats.

• Develop and optimize detection rules, signatures, and indicators of compromise (IOCs) across various security platforms.

• Continuously improve security strategy & technology stack by staying up to date with industry trends, emerging threats, and evolving security best practices.

• Secure SaaS applications and infrastructure by implementing security best practices, access controls, and continuous monitoring.

• Ensure compliance with security frameworks (ISO 27001, SOC 2, PCI-DSS) by developing governance, implementing necessary controls, and securing business processes.

• Collaborate with both non-engineering teams and IT to drive improvements by providing consultative expertise and offering advisory insights for business projects.

• Design, implement and maintain secured cloud security technologies alongside the Product Security team to achieve security and compliance objectives across multiple cloud technologies (e.g. AWS GuardDuty/Security Hub/Inspector, GCP Security Command Center).

• Enhance threat hunting, incident response, and security operations through continuous improvement in detection, analysis, and automation.

• You hold a degree (University/University of Applied Sciences) in Computer Science, Information Technology, or a related field.

• You’re an accomplished Security Operations Engineer with a track record of threat detection engineering within a security operations center (SOC) or similar environment.

• You bring hands-on experience with SIEM solutions, EDR, intrusion detection/prevention systems, and other security tools.

• You're proficient in scripting languages (e.g. Python) for automating security processes and customizing security tools.

• You have prior experience with implementing infrastructure-as-code (Terraform, Pulumi).

• You have a strong understanding of networking protocols, cybersecurity frameworks, and attack vectors.

• You have exceptional analytical and problem-solving skills with the ability to analyze complex security incidents and provide effective solutions.

• You have excellent communication skills with the ability to convey technical concepts to non-technical stakeholders.

• You bring strong documentation skills for creating and maintaining threat detection rules, procedures, and incident reports.

• You are fluent in English; other languages are a plus.

• 💰 A competitive compensation package, including equity options in TravelPerk;

  🌴 25 days annual leave plus bank holidays;

  💼 Company Pension Plan with Aviva; 

  💊 Private medical insurance from Bupa;

  🙌 Life insurance with Zurich;

  🧘‍ Income Protection + Wellbeing App with Unum;

  🦷 Access to voluntary dental insurance through Bupa;

  🚲 Tax-efficient schemes such as Cycle2Work & electric car leasing via Octopus;

  💪 Discounts on 12-month gym memberships with GymFlex;

  💙 iFeel - a mental health support tool with access to therapists year round;;

  🎟️ Access to a wide variety of discounts and rewards;

  🥳 Unforgettable TravelPerk events, including our spectacular annual summer party;

  👶 Parental leave: 12 to 16 weeks, based on location and eligibility factors;

  🫶 16 paid hours per year to volunteer for a cause of your choice;

  🌎 A ’Work from anywhere’ in the world allowance of 20 working days per year.

  📈 Exponential growth opportunities

How We Work

At Perk, we take an IRL-first approach to work, where our team works together in-person 3 days a week. As such, this role requires you to be based within commuting distance of our hubs. We fundamentally believe in the value of meeting in real life to improve connectivity, productivity, creativity and ultimately making us a great place to work.

For certain roles, we can help with relocation from anywhere in the world, English is the official language at the office. Please submit your resume in English if you choose to apply. Do not forget to submit an updated portfolio and/or resume.

Perk is a global company with a diverse customer base, and we want to make sure the people behind our product reflect that. We’re an equal opportunity employer, which means you’re welcome at Perk regardless of how you look, where you’re from, or anything else that makes you, well, you.

Protect Yourself from Recruitment Scams

All official communication from Perk will always come from email addresses ending in @perk.com or @externalperk.com, our verified social media channels, or recruiters listed on our official LinkedIn page. We will never ask you to pay for equipment, training, or fees, request sensitive personal information such as bank details early in the process, or communicate through unofficial apps like WhatsApp, Telegram, or Signal. If you receive a message claiming to be from Perk that seems suspicious, please do not respond. Forward it to [email protected], and we will confirm whether it is legitimate.