Senior Security Engineer II

About the role

As a Senior Security Engineer II you will join The Stepstone Group’s Tech Hub in Warsaw, leading the Security Operations Center (SOC) team in detecting, analysing, and responding to cyber threats. You will use advanced SIEM and EDR tools, automate workflows with Python, and apply the MITRE ATT&CK framework to strengthen our security posture.

Key responsibilities

• Monitor and analyse security data from logs, EDR solutions, and network traffic to identify threats.
• Lead incident response activities, including containment, eradication, and recovery.
• Develop and maintain automation scripts and playbooks in Python to streamline detection, response, and reporting.
• Automate alert triage, enrichment, and remediation to reduce response times.
• Map incidents to MITRE ATT&CK tactics, techniques, and procedures for comprehensive analysis.
• Configure and manage EDR platforms for real‑time endpoint protection.

Required profile

• 10+ years of experience in a SOC or equivalent security role.
• Hands‑on experience with SIEM tools such as Microsoft Sentinel, QRadar, or ArcSight.
• Proficiency in Python for security automation.
• Strong knowledge of incident response processes and the MITRE ATT&CK framework.
• Experience with EDR solutions like CrowdStrike, Carbon Black, or SentinelOne.
• Familiarity with threat‑hunting techniques.
• Relevant certifications (e.g., GSEC, CISSP, OSCP, MaD) are a plus.

Required skills

• Python programming
• SIEM platforms (Sentinel, QRadar, ArcSight)
• MITRE ATT&CK framework
• Endpoint Detection and Response (CrowdStrike, Carbon Black, SentinelOne)
• Threat hunting
• Incident response methodologies

What we offer

• Opportunity to shape the future of job‑tech platforms.
• Collaborative environment with over 300 specialists.
• Access to cutting‑edge security tools and technologies.