Senior Security Engineer – Incident Response

Job not on LinkedIn

🕒 November 25, 2025

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Prima

WebsiteLinkedInAll Job Openings

1001 - 5000 employees

Founded 2015

💸 Finance

👥 B2C

💰 $115.8M Series A on 2018-11

Finance • B2C

Prima is a digitally-native insurance company that redesigns and digitizes the insurance value chain to deliver fast, customer-friendly policies and claims online. Founded in 2015, Prima has grown to serve over 5 million customers across Europe and reported €1. 8 billion in gross written premiums in 2025, operating in Italy, Spain and the UK through partnerships with established carriers and brokers. The company builds its own tech platforms and data stack to power pricing, distribution, agent/broker management, and claims handling, and joined the AXA Group in November 2025 to support further growth.

📋 Description

• Strengthen EDR/XDR and DLP configurations • Define new automatic detections of security events in our SIEM • Improve automatic enrichment and integration with SIEM/SOAR • Automate security alerts triage and Incident Response playbooks • Define runbooks to be used during Incident Response • Lead and execute Table Top eXercises (TTX) with different actors and teams • Lead by example during investigation and response of security alerts • Oversee the on-call shifts • Collaborate on all the activities of the Security Engineering team

🎯 Requirements

• Hands-on experience with SIEM and SOAR platforms • Hands-on experience with Crowdstrike or similar EDR/XDR solutions • Hands-on experience with MDM solutions • Hands-on experience in AWS and K8s (EKS) security • Proficiency in scripting and programming languages (e.g., Python, Rust) • Availability in on-call shifts to guarantee 24x7 security support • Strong English communication skills, with the ability to collaborate effectively with multidisciplinary teams • Self-motivated and proactive, with strong problem-solving skills and accountability for deliverables • Experience working in an Agile environment • Nice-to-have: Relevant certifications such as GCIH, GCFA, GREM, GCIA, or similar are preferred • Hands-on experience with Google Chronicle • Hands-on experience with Web Application Firewall configuration (e.g., Cloudflare) • Proficiency on using CI/CD systems and Infrastructure as Code (e.g., Python Pulumi) • Knowledge of Cloud Control Frameworks (e.g. CIS, CSA, NIST) • Web and mobile application security knowledge • Experience in security research, bug bounty programs or CTFs

🏖️ Benefits

• Full flexibility – work from home, the office or a mix of both • Work from anywhere for up to 30 days a year • Access to learning resources, mentorship, and a growth plan tailored to you • Private healthcare • Gym discounts • Wellbeing programs • Mental health support