CrawlJobs Logo

Csirt Security Engineer

cyclad.pl Logo

Cyclad Sp. z o.o.

Location Icon

Location:
Poland , Warsaw

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

200.00 - 210.00 PLN / Hour
Save Job
Save Icon
Apply Position

Job Description:

In this role, you will be responsible for ensuring the proper implementation of security and continuity policies, influencing business decisions, and strengthening the overall security posture in an agile environment.

Job Responsibility:

  • Ensure the deployment and enforcement of security and business continuity policies within the assigned tribe
  • Act as a security advisor, influencing business and technical decisions in alignment with security objectives
  • Ensure applications are properly onboarded into security tools (e.g., SAST, AVS, Pentests, SCA, ANON)
  • Promote security by design and security by default principles in software development and architecture
  • Support teams in troubleshooting and resolving security issues
  • lead cross-functional vulnerability remediation initiatives
  • Participate in Agile ceremonies (Sprint Planning, Backlog Reviews) with a strong focus on security requirements
  • Provide regular reporting on application security posture and vulnerabilities to IT Risk & Cyber Security stakeholders
  • Collaborate with central IT Risk & Cyber Security teams and other Tribe Security Officers to share best practices
  • Coordinate and follow up on business continuity tests and exercises
  • Support IT risk identification, assessment, and definition of mitigation measures
  • Monitor and track remediation plans and ensure timely execution
  • Report and escalate IT risks based on severity levels
  • Prepare and collect evidence for internal controls and audit processes

Requirements:

  • Proven experience in cybersecurity, IT risk, or a similar security-related role
  • Strong understanding of security governance, risk management, and compliance principles
  • Experience working in Agile environments and collaborating with cross-functional teams
  • Knowledge of application security practices and tools (e.g., SAST, SCA, penetration testing)
  • Ability to assess risks, define mitigation strategies, and track remediation activities
  • Strong analytical and problem-solving skills
  • Excellent communication and stakeholder management skills
  • Ability to influence both technical and business decisions
  • Experience in preparing documentation for audits and internal controls
  • Proactive mindset with a strong sense of ownership
What we offer:
  • Private medical care with dental care (covering 70% of costs). Family package option possible
  • Multisport card (also for an accompanying person)
  • Life insurance
  • Work with talented engineers on large-scale, technically challenging projects

Additional Information:

Job Posted:
April 05, 2026

Work Type:
Hybrid work
Icon
Cyclad Sp. z o.o. - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon
PREMIUM
More languages and countries
+ Unlock 31694 hidden job offers
Languages
English Čeština Deutsch Ελληνικά Español Français +15
Countries
United States United Kingdom India Canada Australia +
See plans
Plans from $2.99 / month

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Csirt Security Engineer

Senior Security Consultant

Job Title: Senior Security Consultant. Role Overview: You will be engaged in tas...
Location
Location
Japan , Tokyo
Salary
Salary:
Not provided
skyhighsecurity.com Logo
Skyhigh Security
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • More than 3 years working experience
  • At least 1 year of experience in one or more of the following security-related tasks: CSIRT support (regulation revision, security planning, security education, security helpdesk, incident response, forensics, malware analysis, etc.), SOC support related (log analysis using SIEM, packet analysis, vulnerability response, etc.), IT/OT Security Assessment, Investigative research on cyber security and information security, Vulnerability diagnosis, penetration test, etc work experience
  • More than 2 years of experience in IT area such as system design/construction, cloud, etc. (required)
  • One or more years of security consulting experience preferred
  • It is preferable to have experience in multiple security consulting projects or pre-sales for multiple security-related services
  • Strong desire to learn about cyber security and information security (required)
  • Communication and coordination skills with stakeholders including customers (At the moment, it is necessary to have a desire to acquire at least.)
  • Passed the Basic Information Technology Engineer Examination (passing is desirable, but there is no problem if you have the same level of knowledge)
  • Business level Japanese proficiency (reading, writing, speaking) is required
  • Business level English proficiency (reading, writing and speaking) preferred. (If you are not comfortable with English when joining the company, there is no problem.)
Job Responsibility
Job Responsibility
  • You will be engaged in tasks such as CSIRT support (including incident response), SOC support, security assessment, research, vulnerability diagnosis, and penetration testing for customers in government agencies, critical infrastructure companies, finance, and manufacturing industries as a team member
  • Depending on your background and security career aspirations, you will be responsible for 2-3 areas of the above duties to improve your own security skills after consulting with your manager
  • Responsible for everything from pre-sales to delivery
  • Our work is on a per-project basis. There is a possibility that you will be engaged in a short-term project of about 3 months or a long-term project that spans several years. In many cases, a team (3-4 people) is formed to proceed
  • Three months after joining the company is the OJT period. While receiving support from managers and mentors, you will use the OJT period to catch up on delivery projects and pre-sales that you participate in.
What we offer
What we offer
  • Retirement Plans
  • Medical, Dental and Vision Coverage
  • Paid Time Off
  • Paid Parental Leave
  • Support for Community Involvement
  • Fulltime
Read More
Arrow Right

Senior Solution Consultant

Senior Solution Consultant role at Trellix, a global cybersecurity company. The ...
Location
Location
Japan , Tokyo
Salary
Salary:
Not provided
skyhighsecurity.com Logo
Skyhigh Security
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • More than 3 years working experience
  • At least 1 year of experience in one or more of the following security-related tasks: CSIRT support (regulation revision, security planning, security education, security helpdesk, incident response, forensics, malware analysis, etc.)
  • SOC support related (log analysis using SIEM, packet analysis, vulnerability response, etc.)
  • IT/OT Security Assessment
  • Investigative research on cyber security and information security
  • Vulnerability diagnosis, penetration test, etc work experience
  • More than 2 years of experience in IT area such as system design/construction, cloud, etc. (required)
  • One or more years of security consulting experience preferred
  • It is preferable to have experience in multiple security consulting projects or pre-sales for multiple security-related services
  • Strong desire to learn about cyber security and information security (required)
Job Responsibility
Job Responsibility
  • You will be engaged in tasks such as CSIRT support (including incident response), SOC support, security assessment, research, vulnerability diagnosis, and penetration testing for customers in government agencies, critical infrastructure companies, finance, and manufacturing industries as a team member
  • Depending on your background and security career aspirations, you will be responsible for 2-3 areas of the above duties to improve your own security skills after consulting with your manager
  • Responsible for everything from pre-sales to delivery. It is possible to gain hands-on experience by being involved in the entire project from making proposals in cooperation with the sales department to delivering them
  • Our work is on a per-project basis. There is a possibility that you will be engaged in a short-term project of about 3 months or a long-term project that spans several years. In many cases, a team (3-4 people) is formed to proceed
  • Three months after joining the company is the OJT period. While receiving support from managers and mentors, you will use the OJT period to catch up on delivery projects and pre-sales that you participate in
What we offer
What we offer
  • Retirement Plans
  • Medical, Dental and Vision Coverage
  • Paid Time Off
  • Paid Parental Leave
  • Support for Community Involvement
  • Fulltime
Read More
Arrow Right

Staff Security Engineer

Mozilla is looking for an Incident Responder to monitor and mitigate attacks acr...
Location
Location
Canada; United States
Salary
Salary:
Not provided
mozilla.org Logo
Mozilla
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of demonstrated ability managing security incidents at a global scale and/or experience working in Security Operations Centers (SOC), Product Security Incident Response Teams (PSIRT), and Computer Security Incident Response Teams (CSIRT)
  • Expertise with security information and event management (SIEM) systems (eg. ELK, Google BigQuery, Splunk, etc.). Splunk proficiency is preferred
  • Expertise with integrating and leveraging threat intelligence for detection engineering
  • Expertise with security orchestration and automation (SOAR) platforms such as Tines or Splunk SOAR
  • Superb communication and leadership capacity
  • ability to partner effectively with diverse company stakeholders
  • Real-world experience in software development and/or engineering operations for consumer products and services
  • B.S. in a technology-focused field is helpful
  • Practical experience working with cloud technologies (eg. Google Cloud Platform, Amazon Web Services, Heroku, Microsoft Azure, etc.)
  • Ownership and Accountability
Job Responsibility
Job Responsibility
  • Identify and respond to security incidents on a global scale
  • Act as an incident commander to drive incidents through the entire response lifecycle
  • Design and maintain a portfolio of security alerts, automated actions, playbooks and escalation workflows in support of a high-performing 24/7 incident response capability
  • Conduct threat hunting activities, anticipate future threats, and maintain forward-thinking strategies for tools/technology/processes that combat sophisticated threat actors
  • Research threat intelligence reports, triage and manage resulting workflows
  • Partner with key stakeholders and communicate effectively to maintain a continuously improving feedback loop of preparation, identification, analysis, containment, and post mortem activities
  • Participate in on-call rotation
What we offer
What we offer
  • Generous performance-based bonus plans
  • Rich medical, dental, and vision coverage
  • Generous retirement contributions with 100% immediate vesting
  • Quarterly all-company wellness days
  • Country specific holidays plus a day off for your birthday
  • One-time home office stipend
  • Annual professional development budget
  • Quarterly well-being stipend
  • Considerable paid parental leave
  • Employee referral bonus program
  • Fulltime
Read More
Arrow Right

CSIRT Director

The CSIRT Director is a cybersecurity leader responsible for the complete owners...
Location
Location
Canada , Montreal
Salary
Salary:
Not provided
sita.aero Logo
SITA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 15+ years of progressive experience in cybersecurity, with at least 7+ years in a senior leadership role with direct accountability for security operations.
  • 5+ years of direct experience managing large, geographically distributed Security Operations Centers (SOCs) — including multi-site, multi-shift, 24/7/365 operations.
  • Bachelor's degree in computer science, Information Systems, Information Security, or a related discipline
  • or equivalent professional experience.
  • Active professional certification in at least one of the following: CISSP, CISM, CISA, GIAC GSOM, GIAC GCIH, or equivalent.
  • Proven experience managing global teams across multiple time zones and cultures, with a track record of building cohesive, high-performing distributed teams. With demonstrated ownership of an Incident Response Function and Team.
  • Demonstrated ownership of two or more of the following functions: SOC, CTEM / Vulnerability Management, Cyber Threat Intelligence,
  • Strong command of the MITRE ATT&CK framework, NIST CSF, and incident response methodologies (SANS PICERL, NIST 800-61).
  • Executive-level communication skills — ability to translate complex technical threats into business risk language for CISO, C-suite, and Board audiences.
Job Responsibility
Job Responsibility
  • Continuous Threat Exposure Management (CTEM) - Directs the organization's proactive exposure reduction program. This includes attack surface management, vulnerability prioritization, red team / purple team program oversight, penetration testing governance, and the coordination of remediation workflows with IT and engineering stakeholders.
  • Cyber Threat Intelligence (CTI) - Commands the intelligence function responsible for producing finished, operationalized threat intelligence. This includes strategic intelligence briefings to CISO and Board, tactical intelligence feeds into detection platforms, threat actor tracking, sector-specific threat analysis (transportation/aviation/border security), and third-party intelligence partnerships.
  • Incident Response (IR) - Owns the full incident response lifecycle. Accountable for IR planning and playbook governance, crisis management and executive communication during significant incidents, forensic capability oversight, tabletop exercise program, regulatory breach notification coordination, and post-incident reviews (PIRs).
  • Security Operations (SecOps) Collaboration - Direct and optimize resources across global SOC locations (Montreal, Cairo, Singapore), ensuring consistent standards, 24/7/365 coverage through a follow‑the‑sun operating model, and resilient business continuity with defined failover capabilities. Drive collaboration and intelligence sharing across sites while managing MSSP and third‑party partners to ensure performance, accountability, and unified global operations.
  • Strategic Leadership & Governance - Define and lead a multi‑year global CSIRT strategy, serving as the single point of accountability for threat exposure, intelligence, and incident response while aligning capabilities to business risk and industry frameworks. Own executive reporting, budget planning, and the establishment of clear SLAs and KPIs to ensure a mature, scalable, and effective cybersecurity operations program.
  • People Leadership & Talent Development - Lead, develop, and retain a high‑performing global cybersecurity operations team across CTEM, CTI, and Incident Response, fostering an inclusive, high‑accountability culture that enables collaboration across regions and time zones. Establish clear career pathways, performance management, and succession planning while overseeing staffing models, shift coverage, and on‑call operations across all SOC locations.
  • Executive & Stakeholder Engagement - Act as the primary liaison to the CISO, delivering executive‑ and board‑level insights on security operations, threat posture, and incident response effectiveness. Partner cross‑functionally with architecture, engineering, GRC, legal, and IT teams, and represent CSIRT in audits, regulatory reviews, and customer security engagements.
What we offer
What we offer
  • Work from home up to 2 days/week (depending on your team’s needs)
  • Flex Day: Make your workday suit your life and plans.
  • Flex Location: Take up to 30 days a year to work from any location in the world.
  • Employee Wellbeing: Employee Assistance Program (EAP) for you and your dependents 24/7, 365 days/year
  • Champion Health platform.
  • Professional Development: Access to world-class learning platforms including LinkedIn Learning, Microsoft's Enterprise Skills Initiative, Airport Council International, Pluralsight, Harvard Business Publishing, Stanford and many others.
  • Competitive Benefits: Competitive benefits that make sense with both your local market and employment status.
  • Fulltime
Read More
Arrow Right

Senior Security Engineer - Incident Response

Mozilla is looking for an Incident Responder to monitor and mitigate attacks acr...
Location
Location
Germany
Salary
Salary:
Not provided
mozilla.org Logo
Mozilla
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of demonstrated ability managing security incidents at a global scale and/or experience working in Security Operations Centers (SOC), Product Security Incident Response Teams (PSIRT), and Computer Security Incident Response Teams (CSIRT)
  • Expertise with security information and event management (SIEM) systems (eg. ELK, Google BigQuery, Splunk, etc.). Splunk proficiency is preferred
  • Expertise with endpoint detection and investigation. Hands-on experience with leading EDR tools and demonstrated ability to leverage endpoint telemetry to find root cause
  • Expertise with security orchestration and automation (SOAR) platforms such as Tines or Splunk SOAR
  • Superb communication and leadership capacity
  • ability to partner effectively with diverse company stakeholders
  • Real-world experience in software development and/or engineering operations for consumer products and services
  • B.S. in a technology-focused field is helpful
  • Practical experience working with cloud technologies (eg. Google Cloud Platform, Amazon Web Services, Heroku, Microsoft Azure, etc.)
  • Ownership and Accountability
Job Responsibility
Job Responsibility
  • Identify and respond to security incidents on a global scale
  • Act as an incident commander to drive incidents through the entire response lifecycle
  • Design and maintain a portfolio of security alerts, automated actions, playbooks and escalation workflows in support of a high-performing 24/7 incident response capability
  • Conduct threat hunting activities, anticipate future threats, and maintain forward-thinking strategies for tools/technology/processes that combat sophisticated threat actors
  • Research threat intelligence reports, triage and manage resulting workflows
  • Partner with key stakeholders and communicate effectively to maintain a continuously improving feedback loop of preparation, identification, analysis, containment, and post mortem activities
  • Participate in on-call rotation
What we offer
What we offer
  • Generous performance-based bonus plans
  • Rich medical, dental, and vision coverage
  • Generous retirement contributions with 100% immediate vesting
  • Quarterly all-company wellness days
  • Country specific holidays plus a day off for your birthday
  • One-time home office stipend
  • Annual professional development budget
  • Quarterly well-being stipend
  • Considerable paid parental leave
  • Employee referral bonus program
  • Fulltime
Read More
Arrow Right

Professional Services Consultant

This is a commissioned position. Develops and delivers detailed IT solutions thr...
Location
Location
Japan , Tokyo
Salary
Salary:
Not provided
skyhighsecurity.com Logo
Skyhigh Security
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • More than 3 years working experience
  • At least 1 year of experience in one or more of the following security-related tasks: CSIRT support (regulation revision, security planning, security education, security helpdesk, incident response, forensics, malware analysis, etc.)
  • SOC support related (log analysis using SIEM, packet analysis, vulnerability response, etc.)
  • IT/OT Security Assessment
  • Investigative research on cyber security and information security
  • Vulnerability diagnosis, penetration test, etc.
  • More than 2 years of experience in IT area such as system design/construction, cloud, etc. (required)
  • One or more years of security consulting experience preferred
  • It is preferable to have experience in multiple security consulting projects or pre-sales for multiple security-related services
  • Strong desire to learn about cyber security and information security (required)
Job Responsibility
Job Responsibility
  • SIEM/XDR導入・運用支援コンサルティング
  • SOC運用支援コンサルティング
  • セキュリティ製品コンサルティング
  • Develops and delivers detailed IT solutions through consulting project activities
  • Responsibilities include client identification through final invoicing for engagements requiring varied interpersonal and technical skills
  • Technical responsibilities include problem identification, system architecture definition, hardware/software specification and/or design, implementation, testing, client training, and solution deployment
  • Project management activities include interaction with company and client managers and cost/schedule monitoring
  • May have some financial responsibilities including project cost estimating, proposal generation, and invoicing
  • May participate in sales and proposal presentations in addition to completing ongoing team account activities
  • Identifies additional product/services opportunities in customer organization
What we offer
What we offer
  • Pension and Retirement Plans
  • Medical, Dental and Vision Coverage
  • Paid Time Off (Annual Paid leave, Summer Vacation, Birthday Leave, Child Nursing Leave, Family Care Leave, Marriage, Child/Sibling Marriage, Family Birth, Menstrual Leave, Bereavement Leave, International Business Trip, Jury Leave)
  • Paid Parental Leave
  • Support for Community Involvement
  • 社会保険、生命保険、確定拠出年金、Benefit one, Brabo!, Mark City Office Worker Benefit, Trellix Learning Tools, Employee Referral Program
  • We offer a variety of social programs, flexible work hours and family-friendly benefits to all of our employees
  • Fulltime
Read More
Arrow Right

Sr. Staff Engineer, Operations Engineer

At GEICO, we offer a rewarding career where your ambitions are met with endless ...
Location
Location
United States , Seattle; Palo Alto; Chevy Chase
Salary
Salary:
130000.00 - 260000.00 USD / Year
geico.com Logo
Geico
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Infrastructure technologies knowledge in a hybrid cloud environment such including Containerization, VMs, CI/CD pipeline, IaC
  • Extensive experience in engineering and solution delivery in a dynamic service provider environment
  • Strong program and project management skills with proven experience coordinating projects across multiple teams, with successful project/product delivery at scale
  • Working knowledge of security services and their impact on production systems including runtime protection services, detective and protective agents and/or daemon sets, vulnerability and application scanning, etc.
  • Experience in a multi-platform environment with Linux, Mac, Windows
  • Experience communicating and presentating to senior and junior staff with the ability to influence stakeholders
  • Detail and deadline oriented with effective organizational and analytic skills
  • Strong critical thinking, problem solving, decision making, and analytical skills
  • Outstanding time management skills and attention to detail
  • Excellent verbal/written communication skills, including the ability to clearly document findings, proposals, issues, and status
Job Responsibility
Job Responsibility
  • Monitor and track signals of security gaps, initiative delays, compliance risks due to system issues, and drive resolution
  • Create visuals on current state of the union related to security engineering
  • Help to develop standards on reporting tool effectiveness, maturity, resilience and other factors in determining risks as they come up
  • Help drive automation of routine tasks to drive growth in security protection and detection technologies
  • Provide expert guidance, demonstrations and lead discussions on security best practices to stakeholders and leadership
  • Works in lockstep with our CSIRT, GRC, Tech and partner teams to ensure protection coverages, proper detection event notifications, documentation and standards we can all use
  • Organize, store and manage operational best practices documentation for security solutions to protect our platforms including endpoint, cloud, collaboration, identity and network
  • Partner with the project sponsors, delivery teams, and stakeholders to deliver quality solutions on time and within budget by coordinating project activities across multiple systems, departments, and teams
  • Create, maintain, and actively manage a detailed project schedule, change control process, and documentation
  • Identify and raise appropriate security risks, in addition to presenting detailed and implementable solutions or alternatives
What we offer
What we offer
  • Comprehensive Total Rewards program that offers personalized coverage tailor-made for you and your family’s overall well-being
  • Financial benefits including market-competitive compensation
  • a 401K savings plan vested from day one that offers a 6% match
  • performance and recognition-based incentives
  • and tuition assistance
  • Access to additional benefits like mental healthcare as well as fertility and adoption assistance
  • Supports flexibility- We provide workplace flexibility as well as our GEICO Flex program, which offers the ability to work from anywhere in the US for up to four weeks per year
  • Fulltime
Read More
Arrow Right

Senior Cyber Security Analyst

In the Bosch Cyber Security Organization, we coordinate the vulnerability manage...
Location
Location
Poland , Warszawa
Salary
Salary:
Not provided
https://www.bosch.pl/ Logo
Robert Bosch Sp. z o.o.
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Completed university degree (Master/Diploma/PhD) in Information Security, Computer Science, Software Development, Electrical Engineering, Mathematics, or comparable field
  • Team player familiar with cooperation and delegation
  • Versatile and communicative individual who enjoys preparing and sharing information tailored to target audience
  • Strong technical background in security and several years of professional experience in multiple fields: IT Security, Cloud Security, Embedded Security, Industrial Control Systems (ICS), Industrial IoT (IIoT), Consumer IoT, Software Security and Security Research, Vulnerability Management process design and execution
  • Ideally basic knowledge in operational management of CSIRT, CERT, or Product-CERT
  • Love challenges while defining and implementing processes in new, effective, and user-oriented manner
  • Very good English written and spoken
  • German would be an important asset
Job Responsibility
Job Responsibility
  • Investigate and assess vulnerabilities within operational environment
  • Provide basis for prioritizing vulnerability remediation follow-up
  • Work closely with development and operations teams in Poland and tracking teams in India
  • Support further development of Enterprise Security Advisory Services
  • Track risks through vulnerabilities
  • Continuously identify process improvements for enhanced tool support
  • Coordinate implementation of improvements with international teams
  • Actively work as team to network with external stakeholders
What we offer
What we offer
  • Competitive salary + annual bonus
  • Hybrid work with flexible working hours
  • Referral Bonus Program
  • Copyright costs for IT employees
  • Professional support and knowledge sharing
  • Ongoing development opportunities in multinational environment
  • Broad access to professional trainings including language courses, conferences and webinars
  • Private medical care and life insurance
  • Cafeteria System with multiple benefits including MultiSport, shopping vouchers, cinema tickets
  • Prepaid Lunch Card
  • Fulltime
Read More
Arrow Right