Senior Security Detection Engineer

Join NN Digital Hub as a Senior Security Detection Engineer

In the Security Platforms Research & Development team (SPRD) we act as a center of excellence dedicated to engineering, operating, and enhancing our global security monitoring infrastructure. As a hands-on team, we design, build, and operate the defenses that protect our organization. Our core responsibilities include developing, testing, and deploying detection rules and analytics to identify security threats, as well as ensuring the health, stability, and performance of our security monitoring stack. We also serve as the primary technical point of contact for onboarding new log sources and supporting our customers. Additionally, we build and maintain integrations between our security platforms and other organizational systems to enable automation and data enrichment. Currently, we are at the stage of expanding our team; that is, we need two more Senior Security Detection Engineers

What you will work on:

You will be designing detection rules based on inputs from multiple sources like threat intelligence, red team, custom requests from stakeholders and so on. You will be responsible for not only creating queries in multiple query languages but also for properly documenting the scenario, preparing emulation test cases and making sure that use case is properly handed over to operations for monitoring. For our internal customers you will also serve as a SME for security monitoring, providing guidance and expertise on the matter.

To elaborate in more detail, you will:

• Design and develop security monitoring scenarios in multiple SIEM and EDR systems such as Splunk, MS sentinel and defender for endpoint

• Cooperate with number of specialized security teams within cyber defense center with the common goal of better protecting NN from latest cyberthreats

• Help develop and automate our internal toolset

• Serve as a subject matter expert for our junior team members as well as for our customers

• Build and keep good relationships with our internal customers, NN leadership, and third parties

• Stay up to date with latest infosec developments and applying this to our day to day operations

• Make sure the solutions you work on fit the sprint requirements

Who we are looking for:

• You know your way around different areas of information security

• You get how security works in both big company setups and in the cloud

• You are familiar with SIEM solutions like Splunk and Sentinel, EDR systems like defender for endpoints and similar

• You have a solid grasp of networking, operating systems, cryptography, malware, and other security topics

• You can handle scripting in Python, Bash, or PowerShell

• You are familiar with Infrastructure as a code tools like terraform and ansible.

Perks of joining NN

• We operate in a hybrid way. Most of the time you can work from home, but the team meets in the office at least once a week. NN will contribute to your HO expenses. However, during the probation period it would be better to be in the office more frequently to make onboarding easier

• Enjoy 5 weeks of vacation, 5 well-being days, extra paid time off for personal events, and a volunteering day

• On top of your salary, you'll get a meal allowance, up to CZK 20,000 in Cafeteria benefits, a MultiSport card option, pension contributions, and a discount on life insurance

• We support your growth with personalized professional training

• Get up to CZK 60,000 for referring new colleagues

• You'll get a business laptop and an iPhone with a paid O2 plan

How does our hiring process work?

There are usually two rounds. First, you'll have a chat with Veronika (Talent Acquisition Specialist) and the engineering manager - we'll tell you about the team and ask about your experience and what you're looking for. Next up is a technical talk with some of the team, just to see what you know in practice. If things go well and we're a good fit for each other, you'll have a quick call with the CDC team manager to get to know each other a bit more.