Role: Senior SecOps Engineer
Salary: Competitive package + equity
Location: Warsaw/ Barcelona
Note: This is a global role and may require travel to different sites across Europe, with occasional out of hours and weekend work.
Summary
Our client, a rapidly growing HealthTech Unicorn, is on a mission to humanise the healthcare experience for doctors, patients, and clinics through their digital product. A leader in 13 countries supporting millions of patients and doctors, our client is now turning their focus to the security team and seeking a crucial hire to support their growth.
We are looking for a seasoned Senior Security Operations Analyst/Engineer to join our team. In this role, you will lead incident response initiatives and conduct thorough cybersecurity investigations to mitigate risks effectively. You will play a key role in enhancing our security program by refining processes and optimizing tooling to strengthen our overall cybersecurity posture.
As a Senior Engineer, you will be responsible for designing and implementing advanced threat detection and mitigation strategies across diverse technology landscapes. Your ability to communicate complex risks and incidents clearly to stakeholders is crucial for maintaining transparency and building trust. Additionally, you will ensure compliance with industry standards and regulations, such as NIST, ISO 27001, and SOC 2 Type 2.
Responsibilities:
- Perform daily alert investigation and incident response in both cloud-native and traditional environments
- Identify, scope, and manage ongoing incidents for our customers, developing remediation plans to improve security maturity
- Improve and maintain processes, tooling, documentation and training to mature and enhance cybersecurity incident response
- Design, implement and maintain monitoring systems
- Assist our development and operations teams on improving our log monitoring capabilities
- Threat intelligence
Tools and Technologies:
- Cloud-based environment AWS
- Datadog
- AWS WAF
- Infrastructure as Code, Terraform
- Kubernetes
Requirements:
- 5+ years of security operations experience, including alert triage, investigation, and incident response
- Experience designing, building and maintaining monitoring and alerting systems from scratch
- Proficiency in managing the incident lifecycle with the ability to handle multiple work streams concurrently
- Strong understanding of secure software development practices, including knowledge of common vulnerabilities such as OWASP Top 10.
- Effective communication skills to articulate complex technical issues to diverse audiences (IT professionals, executives, business decision-makers) in a clear, authoritative, and actionable manner
- Experience in start-up/tech environment in a SaaS company
Nice to Have:
- Familiarity with scripting languages (Python, Bash…) and APIs
- Awareness of cybersecurity standards and regulations such as NIST, CIS, ISO 27001, and PCI DSS
- A basic understanding of Forensic processes