about 14 hours ago
Warsaw, PolandMid Level / Senior
H1B Sponsor
Responsibilities
- Design, build, and optimize SIEM detection rules with a focus on Microsoft Sentinel.
- Develop and execute test cases for detection logic and automate validation processes.
- Support onboarding of critical applications into the security monitoring ecosystem.
- Collaborate with application teams to define logging requirements and detection use cases.
- Lead and moderate workshops with stakeholders to align on threat scenarios and security capabilities.
- Produce clear and comprehensive documentation covering detection logic, threat models, and validation results.
- Work closely with SOC, engineering, and red teams to enhance alert fidelity and incident response effectiveness.
- Contribute to threat verification and ensure deliverables meet ALaM program and DORA milestones.
Requirements
- Hands-on experience with SIEM platforms, preferably Microsoft Sentinel.
- Proven track record in creating, tuning, and testing detection rules.
- Proficiency in Python, PowerShell, Bash, or similar for automation use cases.
- Strong English communication skills with the ability to confidently lead stakeholder workshops.
- Understanding of cloud (Azure, AWS), operating systems (Windows, Linux), and database environments (SQL, Oracle).
- Ability to work independently in a dynamic, high-volume onboarding environment.
Benefits
- Flexible collaboration model based on a B2B contract.
- Opportunity to work on diverse projects.