Senior SOC Engineer

Warszawa, United Kingdom

StepStone Group

Our AI-driven job marketplaces, programmatic-powered marketing solutions and customer-centricity find the perfect candidate quickly and equitably

View all jobs at StepStone Group

Apply now Apply later

Company Description

Who we are 

At The Stepstone Group, we have a simple yet very important mission: The right job for everyone. Using our data, platform, and technology, we create opportunities for job seekers and companies around the world to find a perfect match, in fair and equitable way. With over 20 brands across 30+ countries, we strive for fair and unbiased hiring.  

Join our team of 4,000+ employees and be part of reshaping the labour market and becoming the world’s leading job-tech platform. 

Job Description

As a Senior SOC Engineer you will be responsible for monitoring, analysing and responding to security threats, using tools like SIEM and EDR platforms.

You'll lead the team in incident detection and response efforts, ensuring swift containment and recovery. Your role involves automating security workflows using Python to enhance efficiency and leveraging the MITRE ATT&CK framework to map and analyse threats and create a staged visualization of the relevant attacks that potentially will materialize.

You will play a vital role as we reimagine the labour market to make it work for everybody.

Your responsibilities:

  • Analyse security data from diverse sources, including logs, EDR solutions, and network traffic, to identify and assess threats. Coordinate and lead security incident response efforts, including containment, eradication, and recovery.
  • Develop and implement automation scripts and playbooks using Python to streamline incident detection, response, and reporting processes.
  • Automate security alert triage, enrichment, and remediation workflows to reduce response time and improve efficiency.
  • Use the MITRE ATT&CK framework to classify attack vectors, understand adversary behaviour, and enhance detection capabilities.
  • Map security incidents and alerts to the MITRE ATT&CK tactics, techniques, and procedures (TTPs) for comprehensive analysis. Manage and configure EDR platforms for real-time endpoint monitoring and protection.

Qualifications

Your skills and qualifications:

  • 5+ years of experience in a Security Operations Center (SOC) or similar role with hands-on experience with SIEM tools (e.g., Sentinel, QRadar, ArcSight).
  • Proficient in Python for automation and scripting.
  • Strong understanding of Incident Response processes and methodologies and experience with MITRE ATT&CK framework to map and analyse threats.
  • Knowledge of Endpoint Detection and Response (EDR) platforms (e.g., CrowdStrike, Carbon Black, SentinelOne). Familiarity with threat hunting techniques and processes.
  • Certifications such as GSEC, CISSP, OSCP, MaD are preferred.

Additional Information

Your benefits:

We’re a community here that cares as much about your life outside work as how you feel when you’re with us. Because your job shouldn’t take over your life, it should enrich it. Here are some of the benefits we offer:

  • Premium medical and dental care
  • Life insurance
  • Flex Benefits - Worksmile Cafeteria System (Multisport, vouchers, tickets etc.)
  • Employee Referral Program
  • Hackathons, Knowledge Sharing Hours, In-house projects
  • Tech and sport communities
  • Events and integration parties
  • Charity initiatives, 2 extra volunteer days
  • English/German classes
  • Game room and chillout zone

Our commitment 

Equal opportunities are important to us. We believe that diversity and inclusion at The Stepstone Group are critical to our success as a global company, so we want to recruit, develop, and keep the best talent. We encourage applications from everyone, regardless of background, gender identity, sexual orientation, disability status, ethnicity, belief, age, family or parental status, and any other characteristic. 

Apply now Apply later

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  3  0  0

Tags: ArcSight Automation Carbon Black CISSP CrowdStrike EDR GSEC Incident response MITRE ATT&CK Monitoring OSCP Python QRadar Scripting Sentinel SIEM SOC TTPs

Perks/benefits: Insurance Team events

Region: Europe
Country: Poland

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.