IT&D Security Operations Engineer

Nasze wymagania: 6–8 years of professional experience in Information Security, with a strong hands-on background in designing and engineering detection platforms and mechanisms. Practical experience working with SOAR platforms, including developing and maintaining security automations and playbooks. Strong experience with Microsoft Azure, particularly within the Microsoft Defender product ecosystem. Experience operating EDR platforms, including monitoring deployment issues and ensuring full endpoint coverage. Proficiency in programming and scripting languages, along with solid knowledge of Linux and Windows operating systems. Strong analytical skills with the ability to translate findings into actionable tactics, remediation steps, and project plans. High sense of urgency, ownership, and commitment to delivering measurable results. Mile widziane: CISSP certification. O projekcie: About IT and D In IT&D, you'll be a force for good, whether you're championing cyber security, defining how we harness the power of technology to improve our business, or working with data to guide the innovation of consumer loved products. Working globally across functions, you'll own your projects and process from start to finish, with the influence and visibility to achieve what needs to be done. And if you're willing to bring your ideas to the table, you'll get the support and investment to make them happen. Your potential will never be wasted. You'll get the space and support to take your development to the next level. Every day, there will be opportunities to learn from peers and leaders through working on exciting, varied projects with real impact. And because our work spans so many different businesses, from Research and Product Development to Sales, you'll keep learning exciting new approaches. About the role As a Security Operations Engineer, you will play a key role in strengthening the organization’s security posture by designing, developing, and refining detection platforms and mechanisms. You will be responsible for prioritizing threat response and ensuring that emerging risks are identified and addressed quickly and effectively. A crucial part of the role involves contributing to a robust Incident Response capability by helping shape IR playbooks and driving automation initiatives that enhance operational efficiency. You will actively identify prevention and detection gaps and translate these insights into well designed, effective detection strategies. To succeed in this position, you must be proactive, adaptable, and capable of operating in a fast moving environment. Strong communication skills, a results driven mindset, and the agility to navigate evolving challenges are essential. This role provides a unique opportunity to introduce new capabilities, influence security strategy, and make a meaningful impact on the organization’s cyber resilience. The ideal candidate is a self starter with a pragmatic approach, enjoys tackling complex problems, and thrives in a dynamic, high velocity environment. Zakres obowiązków: Develop and maintain detection rules to ensure timely identification of infrastructure- and application‑level attacks and suspicious activities. Design, build, and continuously refine detection systems and mechanisms. Collaborate with IT&D team members to identify gaps in existing prevention and detection capabilities. Participate in the review of alerts generated by the Microsoft Defender suite and assess their relevance within the Vestacy environment. Coordinate and oversee efforts of the MSSP vendor responsible for delivering Detection and Incident Response services. Identify opportunities for automation across all stages of the Detection & Incident Response process, and translate these findings into effective automated solutions. Contribute to the creation and enhancement of Incident Response playbooks. Actively participate in the Incident Response process, leading investigations for high‑severity and escalated incidents. Oferujemy: We believe great work deserves great rewards. That’s why we offer numerous local benefits and global benefits designed to help you grow and thrive, such as career mobility opportunities, a referral program, access to our online learning academy, mental wellbeing support, and short-term bonus incentives.