Work for an international corporation in the industrial automation sector.
responsibilities :
Handle alerts and incidents generated by CrowdStrike and other endpoint detection platforms.
Investigate SIEM-detected incidents and develop custom detection rules.
Triage and respond to phishing reports and suspicious email activities.
Write and maintain custom Sigma rules and detection logic.
Analyze phishing cases, verify incidents, and assess potential impact.
Identify recurring attack patterns and techniques to enhance detection capabilities.
Maintain detailed documentation of incidents, including remediation actions taken.
Collaborate with other cybersecurity teams to improve overall security posture.
Recommend improvements for phishing detection, prevention, and response workflows.
Stay current with emerging threats, phishing tactics, and cybersecurity trends.
requirements-expected :
CrowdStrike Certified Falcon Responder (CCFR)
CrowdStrike Certified Falcon Hunter (CCFH)
Experience analyzing and responding to security incidents (CrowdStrike, Microsoft Defender O365 a plus)
Knowledge of SIEM systems and ability to create custom detection rules (e.g., Sigma Rules)
Experience investigating phishing incidents and identifying attack patterns
Documenting incidents and providing recommendations for remediation
Ability to collaborate with other teams to improve overall security posture
Experience with log monitoring and event analysis tools (Splunk)
Skills in automation and scripting to support incident response
Proactive in staying updated on the latest cybersecurity threats and trends
Strong analytical, communication, and documentation skills
offered :
Job stability – long-term projects, collaboration with leading companies, opportunities for growth across various IT sectors.
Flexible forms of cooperation – B2B contract, employment contract, or mandate contract.
Benefits: Medicover (including dental care), FitProfit, English lessons.
F45 gym training – located in our Warsaw office, exercising together under the guidance of professional trainers.
Internal referral program.
Depending on the project, work can be hybrid, remote, or on-site.
Special events and team-building trips – we build a cohesive team beyond the office as well.
We enjoy giving back – supporting charity initiatives such as Szlachetna Paczka, and through #PomagamyNexio, we engage where we can truly make a difference.
