SOC Engineer (Cybersecurity)

TL;DR

SOC Engineer (Cybersecurity): Monitoring, analyzing, and responding to security incidents in clients’ environments with an accent on detection rules, threat intelligence, and custom integrations. Focus on fine-tuning SIEM/SOAR/XDR solutions, onboarding customers to Rapid7 and EDR/XDR tools, and developing new SOC services.

Location: Poland (Remote, Hybrid)

Company

Fast-growing provider of premium IT and engineering nearshore solutions, assembling cross-border teams for global customers in travel, media, fintech, and healthcare.

What you will do

• Monitor and analyze security events and incidents as part of the SOC team (2nd line)
• Fine-tune and maintain detection rules for customers
• Onboard new customers to SOC services (Rapid7) and EDR/XDR solutions (SentinelOne, Palo Alto)
• Prepare and present monthly/quarterly reports in customer meetings
• Maintain threat intelligence and improve reporting quality
• Build custom integrations between client solutions and SOC/SOAR platforms

Requirements

• Minimum 5 years of experience as SOC Engineer or similar cybersecurity role
• Broad hands-on experience with Rapid7, Palo Alto Networks, SentinelOne, Microsoft Defender, Microsoft Sentinel
• Strong knowledge of SIEM, SOAR, XDR, endpoint security, threat intelligence, SOC operations
• Excellent analytical skills for investigating and resolving incidents
• Strong communication skills (written and verbal) in Dutch and English

Culture & Benefits

• Benefit Café for sport, leisure, books, etc.
• Family-like environment with personal attention
• Competitive salary with regular reviews
• Flexible working hours and work-life balance
• Educational support including funded language classes
• Luxmed private healthcare, cozy workplace with WFH opportunities, fresh fruits, exciting events