Security Engineer (Detection & Response)
HelloFresh
8 days ago
Warsaw, Poland
Mid Level / Senior
Responsibilities
- Monitor SOC operations and build use cases using cloud-native SIEM platforms.
- Conduct initial triage of security events and document the Incident Response Lifecycle.
- Automate and optimize security solutions like EDR/EPPs and firewalls.
- Utilize threat intel feeds to monitor environments against APT campaigns.
- Prepare status reports and manage incidents through Jira and Incident Management.
- Contribute to the improvement of security logging and monitoring maturity.
Requirements
- Minimum of 2 years of experience in mature SOC environments.
- Experience in security monitoring and incident response in AWS.
- Familiarity with cloud SIEM & SOAR platforms and DDoS mitigation tools.
- Understanding of network intrusion methods and containment techniques.
- Ability to operate EDR, EPP, and Device Management solutions.
- Decent programming skills for data processing and security automation.
- Good communication and reporting skills.
- Experience with log analysis stacks like ElasticSearch or Splunk.
- Willingness to work on-call in rotational shifts.
Benefits
- Collaborate with experienced engineers and product partners globally.
- Build and operate modern systems impacting over 6 million customers.
- Drive best practices and influence architecture in a product-led setup.
- Participate in end-to-end development from problem definition to production.
- Access to modern workspace facilities in Warsaw Centre Point.
Tech Stack
AWSElasticsearchSplunk
Categories
Security