Senior Cybersecurity Detection and Response Engineer

Location: Katowice - 2 days in office / 3 days remote

We are delighted to extend an invitation for you to join the esteemed Cybersecurity Detection & Response (CDR) team within the GDS PL Consulting division. In this pivotal role, you will have the opportunity to contribute to groundbreaking projects across a multitude of critical domains, including Security Information and Event Management (SIEM), Security Operations Centers (SOC), Cyber Threat Intelligence, Endpoint Detection and Response (EDR), Network Security, and Incident Response.

The opportunity

As an integral part of our dynamic team, you will engage in a wide spectrum of project-based work encompassing areas such as design, deployment, consultancy, modifications, and incident response. It is imperative to acknowledge that the nature of these projects is highly diverse and will require a flexible mindset and readiness to adapt.

Your key responsibilities

As a valued member of the Cybersecurity Detection & Response team, you will be actively involved in a diverse array of projects, tailored to align with our clients requirements as well as your professional expertise. Additionally, your participation will extend to contributing to the strategic development and expansion of the Cybersecurity Detection & Response (CDR) team

To qualify for the role, you must have

• Experience in at least one of the leading SIEM solutions on the market (Microsoft Sentinel, Splunk, Elasticsearch, Google Chronicle)
• Good knowledge of distributed IT environments, preferably hands-on experience in major Cloud Infrastructures (Microsoft Azure, Amazon Web Services, Oracle Cloud Infrastructure, Google Cloud Platform)
• Advanced skills in Linux (RedHat, Debian) and Microsoft Windows operating systems security
• Familiarity with cybersecurity frameworks and threat models (MITRE ATT&CK, Cyber Kill Chain, STRIDE)
• Familiarity with cybersecurity standards (ISO27001, NIST, CSIRT, CISA)
• Good understanding of TCP/IP networks and deployment models (cloud, hybrid and on-premises)
• Familiarity with High Availability technologies and other resilience solutions
• Documentation skills, including creating and reviewing policies, procedures, SOPs, playbooks, and post-implementation documents
• Proficiency in English at the C1 level
• Willingness and preparedness for travel as required by project needs

Ideally, you’ll also have

• Scripting knowledge (Python, Bash, PowerShell)
• Modern virtualization solutions (Kubernetes/OpenShift/Docker, KVM, VMWare)
• Familiarity with security automation tooling and DevSecOps paradigm
• Familiarity with OT/ICS and Zero-Trust reference architecture
• Preferably holding one of the relevant Microsoft (MS) certifications (e.g. SC-200, MS-500, AZ-500); and industry standard certifications (e.g. CISSP, SSCP, CCSP, CISM, ECSA)
• Experience in people management roles
• Proficiency in AI and machine learning applications, with experience utilizing Copilot.
• Experience in writing or assisting in the Requests for Proposals process

What we offer

• Continuous learning: You’ll develop the mindset and skills to navigate whatever comes next.
• Success as defined by you: We’ll provide the tools and flexibility, so you can make a meaningful impact, your way.
• Transformative leadership: We’ll give you the insights, coaching and confidence to be the leader the world needs.
• Diverse and inclusive culture: You’ll be embraced for who you are and empowered to use your voice to help others find theirs.

About EY

EY | Building a better working world

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate.

Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

In compliance with the requirements of the Whistleblower Protection Act, our company has established the Procedure for reporting breaches of law and undertaking appropriate follow-up actions. Any misconduct should be reported through the EY Ethics Hotline.

EY refers to the global organization, and may refer to one or more, of the member firms of Ernst & Young Global Limited, each of which is a separate legal entity. Ernst & Young Global Limited, a UK company limited by guarantee, does not provide services to clients.

EY is an equal opportunities employer and welcomes applications from all candidates. EY is committed to diversity and inclusion and creating a workplace where everyone feels valued and respected.