We are seeking an experienced Senior SOC Engineer to join our cybersecurity team.
In this role, you will be instrumental in engineering SIEM solutions, enhancing our security operations, and ensuring the integration of cutting-edge security technologies. Your expertise will help shape security strategies and protect organizational assets from evolving threats.

#LI-DNI#EasyApply

Responsibilities

• Design, deploy, and configure SIEM solutions, integrating with security tools, systems and log sources
• Drive SIEM migration projects, manage data transfer, and tune configurations
• Create and customize SIEM use cases, correlation rules, dashboards, and reports
• Ensure diverse log sources are integrated for comprehensive monitoring
• Collaborate with the SOC team to support incident response and use case fine-tuning
• Optimize SIEM performance to streamline log collection, storage, processing, and alerting
• Maintain documentation for SIEM configurations and integrations and deliver performance reports
• Train and mentor junior security engineers and SOC analysts on SIEM utilization and best practices
• Work with IT, security, and network teams to align the SIEM platform with security strategies

• At least 3 years of experience in cybersecurity, specializing in SIEM engineering and SOC operations
• Expertise in engineering and architecting SIEM solutions such as Splunk, Microsoft Sentinel, QRadar, ArcSight, or LogRhythm
• Proficiency in full lifecycle management of SIEM enhancements and automation, including convergence with SOAR and XDR solutions
• In-depth knowledge of log source integration, developing correlation rules, alerts, and dashboards
• Familiarity with cloud environments like AWS, Azure, and GCP, and integrating cloud logs into SIEM solutions
• Understanding of security frameworks such as MITRE ATT&CK, NIST and basic regulatory compliance knowledge like GDPR, PCI-DSS
• Proficiency in network protocols, firewalls, IDS/IPS, and endpoint security
• Ability to deliver client-centric solutions considering the client's security challenges and regulatory requirements
• Strong communication skills for explaining complex technical concepts
• Experience in stakeholder management across various organizational levels
• Competency in working collaboratively with diverse teams and facilitating stakeholder discussions

• Skills in Threat Hunting and Threat Modeling
• Familiarity with Anti-Malware solutions and Cloud Security Concepts
• Proficiency in programming/scripting languages like PowerShell and Python
• Understanding of Google Cloud Chronicle

• We gather like-minded people:
  • Engineering community of industry professionals
  • Friendly team and enjoyable working environment
  • Flexible schedule and opportunity to work remotely within Poland
  • Chance to work abroad for up to 60 days annually
  • Relocation within our 50+ offices
• We provide growth opportunities:
  • Outstanding career roadmap
  • Leadership development, career advising, soft skills, and well-being programs
  • Certification (GCP, Azure, AWS)
  • Unlimited access to LinkedIn Learning, Get Abstract, O'Reilly, Cloud Guru
  • Language classes in English and Polish for foreigners
• We cover it all:
  • Stable income (Employment Contract or B2B)
  • Participation in the Employee Stock Purchase Plan
  • Benefits package (health insurance, multisport, shopping vouchers)
  • Strategically located offices featuring entertainment and relaxation zones, table tennis and football, free snacks, fantastic coffee, and more
  • Referral bonuses
  • Corporate, social and well-being events
• Please, note:
  • The set of bonuses might vary based on the role you apply for - specifics will be discussed with our recruiter during the general interview
  • We will reach out to selected candidates exclusively