Senior Cyber Security Engineer- Hybrid
HERE Technologies Zobrazit všechny práce
- Brno, Jihomoravský
- Trvalý pracovní poměr
- Plný úvazek
You will join a global Security Operations Center (SOC) and Incident Response team operating across multiple regions, responding to incidents during EMEA business hours. In this role, you’ll collaborate with some of the brightest minds in cybersecurity to protect our organization from evolving threats. The SOC’s mission is to proactively identify, detect, and respond to security incidents within the HERE environment, performing in-depth forensic analysis to prevent future occurrences. We adhere to industry best practices throughout the incident response lifecycle while leveraging innovative approaches to tackle the most complex security challenges.*]:pointer-events-auto scroll-mt-[calc(var(--header-height)+min(200px,max(70px,20svh)))]" dir="auto" tabindex="-1" data-turn-id="request-WEB:52dc859d-c957-47fc-a452-5efed682256d-1" data-testid="conversation-turn-4" data-scroll-anchor="true" data-turn="assistant">As a Senior Security Engineer, you will serve as an individual contributor focused on security incident response, investigations, and digital forensics. You will triage, investigate, and resolve security incidents across enterprise and cloud environments, and help strengthen incident response capabilities through process improvements, metrics, and threat-informed recommendations.Key ResponsibilitiesTriage, investigate, and resolve security incidents from multiple sources, following established playbooks, including (but not limited to):Phishing email reportsSIEM/SOAR alerts (Splunk)Cloud security alerts (AWS/Azure)Endpoint Detection & Response alerts (CrowdStrike)Host-based proxy alerts (Zscaler)Abuse reports, account compromises, and other security escalationsPerform in-depth incident investigations, including forensic evidence collection and analysis, to determine scope, root cause, and impact.Conduct malware behavior analysis to assess impact and recommend remediation across Linux, Windows, and macOS environments.Help improve incident response processes by providing feedback, documenting lessons learned, and tracking operational metrics for leadership.Perform threat analysis of emerging threats and communicate findings, recommendations, and risk implications to management.Stay current with attacker tactics, techniques, and procedures (TTPs) to identify and respond to sophisticated threats.Clearly articulate incident details and response actions to business stakeholders and non-technical audiences.Who are you?
- Bachelor's or Master’s degree in Computer Science, Engineering, or equivalent practical experience.
- 5+ years of professional experience in Security Operations, Incident Response, Digital Forensics, or a closely related cybersecurity role.
- Strong knowledge of incident response processes and incident handling; GCIH/GCIA/GNFA (or equivalent) certifications are a plus.
- Malware analysis skills: ability to analyze malware behavior, assess impact, and recommend remediation across Linux, Windows, and macOS environments.
- Digital forensics experience: solid understanding of forensic evidence collection and analysis to support incident investigations.
- Strong security fundamentals, including modern attack vectors, exploitation techniques, and attack execution patterns.
- Cloud experience required: hands-on experience investigating and responding to security incidents in AWS and/or Azure (e.g., log sources, IAM, network controls, cloud-native security services).
- Excellent communication skills; fluent in English.
- Work on the development of large-scale services, serving and storing petabytes of data
- Work with cutting-edge, modern technologies
- A great work-life balance
- Flexible working hours
- Competitive salary plus bonus
- Fantastic & talented people from 60+ countries worldwide