SecOps Engineer

Your Opportunity

Mollie is a fast growing financial services company, and security is an essential and integral part of our business. The role of the Security Operations Analyst/Engineer lies at the heart of it all. 

This is a hands-on role focused on providing operational security for Mollie through resolving security incidents and running various security operations activities, including threat hunting, analysis of threat intelligence and automation.

You will join the existing SecOps team, consisting of mid- to senior-level experts, where you will find a lot of opportunities to shine and make an impact.

This role requires assisting in a wide range of security initiatives, involving self-directed and informed decision-making on critical security topics.

What you'll be doing

• Respond to security incidents, collaborating with other internal teams and external parties to ensure coordinated responses and minimize business disruption. 

• Investigate and resolve security incidents, following established procedures and best practices.

• Develop and enhance security playbooks and runbooks to document standardized procedures for incident response, threat hunting etc.

• Collaborate with the Security Engineering team to improve our overall security posture and detection capabilities.

• Proactively hunt for threats not easily detected by existing use cases

• Define monitoring scenarios and develop prototype rules based on security intel or defense gaps.

• Participate in the incident response rotation and on-call procedures

• Identify potential threats, delivering strategic reports and changes like use case updates to minimise the impact of the threats 

• Create reports, dashboards, and security metrics to communicate security posture and insights.

• Automate repetitive security tasks to improve efficiency and free up time for more strategic security initiatives.

• Identify areas for optimization, propose and implement process changes, collaborating with the team for efficient security operations 

What you'll bring

• Experience in a fast-growing product company, with a strong ownership mindset in a fast-paced environment.

• Experience working within a Security Operations (SecOps) team in any role is preferred.

• Ability to work independently, prioritize workload, and collaborate with cross-functional teams.

• A customer-centric approach that is both pragmatic and risk-aware.

• Strong understanding of security concepts including cyberattacks, related TTPs, threat vectors, controls, risk management, and incident response.

• Experience with Security Incident and Event Management and Security Orchestration and Automated Response

• Experience with Threat Intelligence, Threat Hunting, Endpoint Detection and Response tools (e.g. Crowdstrike, Sysdig)

• Experience working in a DevOps environment and methodologies, ideally with a DevSecOps approach.

• Experience working with regulatory compliance frameworks and information security management standards like NIST, PCI DSS, GDPR, and DORA.

• Experience with a “3 lines of defense” model, dealing with auditors, and managing controls.

• Familiarity with cloud-based platforms (e.g., GCP) and experience with Linux, macOS, Kubernetes, Terraform, and GitLab.

• Experience automating workflows, with Python scripting preferred.