Security Engineer (Cyber Defence)
Tasks
- Automate triage enrichment containment and notifications
- Build and maintain SOAR playbooks
- Collaborate with MSSP to review and improve detections
- Conduct purple team exercises and translate findings
- Create incident timelines and indicators of compromise
- Design detection rules and analytics
- Drive containment and eradication during incidents
- Integrate detection and response tooling with core systems
- Investigate escalated alerts and determine root cause
- Onboard and parse new log sources
- Run detection and response exercises with MSSP
- Run threat hunts using hypotheses
- Tune detections for coverage and performance
- Validate detection coverage with breach and attack simulation
- Write detections as code with version control
Perks/Benefits
Skills/Tech-stack
AWS CloudTrail | AWS GuardDuty | Access Management | Active Directory | Amazon EKS | Attack Simulation | Automation | Breach and Attack Simulation | Chronicle | Cortex XDR | Cyber Security | Detection engineering | Diamond Model | Elastic Stack | Entra ID | Flow Logs | Identity and Access Management | Identity and access | Incident Response | JSON | Microsoft Sentinel | Mitre Attack | Palo Alto | Palo Alto Cortex | Palo Alto Cortex XDR | Palo Alto XSIAM | Purple Teaming | Python | SIEM | SOAR | SOAR playbooks | Splunk | Threat hunting | VPC Flow Logs | VPC flow | XDR | XQL
Education
N/A
Roles
Cyber Security | Cyber Security Engineer | Engineer | Security | Security Engineer
Related jobs
-
Head of Cyber Security USD 183K-252KAWS Security | Attack surface | Attack surface management | Cloud Security | CloudTrailHybrid work | Training and developmentExecutive-level Full TimeBeograd, Serbia2d ago
-
Senior Penetration Tester EUR 42K-60KAWS | Bash | CI/CD | CloudFormation | DASTCareer growth | Corporate events | Health insurance | Language classes | Learning budgetSenior-level Full TimeBelgrade, Serbia8d ago
-
AWS | Access Management | Alerting | Ansible | AzureRemote workSenior-level Full TimeBelgrade R10d ago
-
Senior Manager, Cyber Defense Operations EUR 65K-85KCrowdStrike | EDR | Incident Response | MITRE ATT&CK | MTTDComprehensive benefits | Hybrid work model | In-office option | Inclusive culture | Leadership visibilitySenior-level ContractSpain; Portugal; Poland; Romania; Serbia; Czechia19d ago
-
Senior Security Engineer (Hybrid or Remote) EUR 36K-55KASV scanning | AWS | Access Governance | Access Recertification | AutomationHybrid work | Learning and development budget | Paid sick leave | Paid vacation | Relocation supportMid-level Full TimeRemote, Almaty, Limassol, Barcelona, Serbia R22d ago
-
SOC L1 Analyst USD 89K-120KAWS | Application-layer | Application-layer attacks | Cybersecurity | EDRCareer growth | Corporate events | Language classes | Learning and development budget | Premium health insuranceMid-level Full TimeBelgrade, Serbia1mo ago
-
Security Infrastructure Engineer – Senior USD 130K-196KAlertmanager | Ansible | Cilium | ClickHouse | Cloud ComputingAdditional day off | Flexible working hours | Free English lessons | Mental health program | Private insuranceSenior-level Full TimeBeograd, Serbia1mo ago
-
Senior-level Full TimeBeograd, Serbia1mo ago