Security Engineer (Blue Team)

Your daily tasks:

• Monitoring security telemetry and alerts across systems, endpoints, cloud and network infrastructure.

• Investigating suspicious activities, triaging incidents and supporting containment and remediation actions.

• Correlating logs, threat intel and behavioral signals to identify real threats and reduce noise.

• Working closely with our external SOC to validate escalations, provide context and lead follow-up investigations.

• Developing and tuning detection rules and use cases in SIEM and EDR platforms.

• Supporting threat hunting and hypothesis-driven exploration of suspicious activity.

• Participating in incident response lifecycle – documentation, RCA, lessons learned.

• Collaborating with internal teams (IT, Cloud, Dev, Production) to strengthen defensive posture.

• Maintaining detection playbooks, runbooks and response guides.

• Solid experience in hands-on security operations, threat detection or incident response.

• Familiarity with log sources and telemetry: authentication, endpoint, DNS, cloud, firewall, etc.

• Proficiency in using at least one SIEM or EDR platform (e.g. Sentinel, Splunk, CrowdStrike, Qualys EDR).

• Understanding of attack tactics (MITRE ATT&CK) and ability to map detection logic.

• Practical knowledge of operating systems (Windows, GNU/Linux, macOS) from a security perspective.

• Analytical mindset, curiosity and structured approach to problem-solving.

• Very good command of English.

Nice to have:

• Experience with threat hunting, purple teaming or custom rule development.

• Exposure to cloud environments (AWS/GCP/Azure) and their security telemetry.

• Familiarity with SOAR platforms and automated response logic.

• Hands-on knowledge of scripting (e.g. Python, PowerShell, KQL, SPL).

• Security certifications such as GCIH, GCFA, or MITRE ATT&CK Defender.

What we can offer:

• A wide array of benefits: private medical care, life insurance, pro-health campaigns, gifts for different occasions.
• An outstanding work atmosphere in a highly-skilled team of professionals, with flexible working hours, no dress code, and full support of the dedicated HR Business Partner.
• Many opportunities for personal development: a dedicated development budget for each employee, extra two paid days for training and CSR, stable career paths, extensive internal and external training, and financing of English and Polish language classes.
• State-of-the-art offices filled with chillout zones, a fully equipped kitchen, a gym (Wrocław office), and a free car park (Warsaw limited amount of space).