Senior Security Engineer – Incident Response

Job not on LinkedIn

November 25

Apply Now

Receive Emails with Similar Jobs

Prima Power

WebsiteLinkedInAll Job Openings

Aerospace • Automotive • Manufacturing

Prima Power is a leading provider of high-performance machines and automated solutions designed to enhance productivity in sheet metal working. They specialize in advanced technologies such as laser cutting, punching, and robotic solutions, providing a modular approach to manufacturing that integrates seamlessly into clients' production processes. With a customer-focused philosophy, Prima Power aims to support businesses across various industries by improving production efficiency and capabilities.

1001 - 5000 employees

🚀 Aerospace

📋 Description

• Strengthen EDR/XDR and DLP configurations • Define new automatic detections of security events in our SIEM • Improve automatic enrichment and integration with SIEM/SOAR • Automate security alerts triage and Incident Response playbooks • Define runbooks to be used during Incident Response • Lead and execute Table Top eXercises (TTX) with different actors and teams • Lead by example during investigation and response of security alerts • Oversee the on-call shifts • Collaborate on all the activities of the Security Engineering team

🎯 Requirements

• Hands-on experience with SIEM and SOAR platforms • Hands-on experience with Crowdstrike or similar EDR/XDR solutions • Hands-on experience with MDM solutions • Hands-on experience in AWS and K8s (EKS) security • Proficiency in scripting and programming languages (e.g., Python, Rust) • Availability in on-call shifts to guarantee 24x7 security support • Strong English communication skills, with the ability to collaborate effectively with multidisciplinary teams • Self-motivated and proactive, with strong problem-solving skills and accountability for deliverables • Experience working in an Agile environment • Nice-to-have: Relevant certifications such as GCIH, GCFA, GREM, GCIA, or similar are preferred • Hands-on experience with Google Chronicle • Hands-on experience with Web Application Firewall configuration (e.g., Cloudflare) • Proficiency on using CI/CD systems and Infrastructure as Code (e.g., Python Pulumi) • Knowledge of Cloud Control Frameworks (e.g. CIS, CSA, NIST) • Web and mobile application security knowledge • Experience in security research, bug bounty programs or CTFs

🏖️ Benefits

• Full flexibility – work from home, the office or a mix of both • Work from anywhere for up to 30 days a year • Access to learning resources, mentorship, and a growth plan tailored to you • Private healthcare • Gym discounts • Wellbeing programs • Mental health support