Security Operations Engineer
New
Kraków, Promienistych 1, Kraków, Country code: PLFull-TimeMiddle
Salary not disclosed
Apply NowOpens the employer's application page
Job Details
- Languages
- En B2
- Experience
- 2+ years
- Required Skills
- AWSPythonBashGCPLinux
Requirements
- 2+ years in a security operations, SOC, or similar role
- Experience with at least one SIEM platform (e.g., Elastic SIEM, Splunk, Datadog Security, Microsoft Sentinel)
- Experience with alert triage, log analysis, and basic threat hunting
- Familiarity with the MITRE ATT&CK framework
- Experience with at least one EDR platform (e.g., CrowdStrike Falcon, SentinelOne, Wazuh)
- Experience with vulnerability scanning tools (e.g., Nessus, OpenVAS, Qualys)
- Working knowledge of AWS or GCP security controls
- Operational-level Windows & Linux administration
- Familiarity with containerized environments (Docker, Kubernetes)
- Experience supporting SOC 2 or ISO 27001 audits
- Ability to write clear incident reports, runbooks, and policy documentation
- Scripting proficiency in Bash or Python
Responsibilities
- Monitor and triage security alerts from SIEM, EDR, and cloud security tools
- Investigate security incidents, contain threats, and contribute to post-incident reviews
- Maintain and tune detection rules to improve signal quality and reduce false positives
- Track and coordinate vulnerability remediation across infrastructure and services
- Perform access control reviews, privileged account audits, and maintain IAM hygiene
- Maintain security runbooks, playbooks, and incident response documentation
- Support SOC 2 and ISO 27001 audits
- Conduct scheduled internal security assessments and assist with penetration test scoping
- Collaborate with DevOps on system and cloud configuration hardening
View Full Description & ApplyYou'll be redirected to the employer's site
