Security Operations Engineer

Do you want to be part of a winning Team providing one of the most successful engineering access control solutions to the market? Join our team in Krakow and enjoy a collaborative culture that empowers you to build a career you can be proud of.  

What you would do as our Security Operations Engineer 
In this role, you will provide 24x7 operational support for all GSSC Infrastructure services globally, managing incidents requests and acting on monitoring alerts in close collaboration with our internal teams and external partners.  
The role is to understand and suggest improvements of the global GSSC services that provide the most value and to be an interaction point driving the solutions forward. 

In close partnering with our internal customers and external strategic partners, you will increase the IT infrastructure's quality and efficiency and plan for future growth. 

You have an essential role in serving as the point of escalation and collecting feedback and requirements from customers and other stakeholders. You contribute to driving a standard secure infrastructure design and architecture, being compliant with related policies. 

Your responsibilities include securing that processes and routines are well defined and documentation being correctly updated. 

There will be a Group IT team consisting of different skillsets with whom you will work closely within this position. The position requires interaction with engineers and various levels of management and outside agencies. 

You will be working with big data, cloud, and our SIEM tool Splunk as well as other advanced cybersecurity tools such as Rapid7, Invicti, Bitsight and Axonius. 

You would also:

• Interact with a team of internal and external experts to continuously drive and improve security and optimize operation.

• Develop, implement, and monitor applicable metrics for related operations and provide reports to our customers.  

• Process, organize, analyze, and assist in contextualizing incident indicators. 

• Actively participating in projects related to the Cyber Security area within the organization. 

• Assist the ASSA ABLOY group with security assessment of newly acquired companies. 

• Manage permissions for the toolset used by the Cyber Security Operations. 

• Test and run deployment of new security solutions within the ASSA ABLOY group. 

• Participate in self-development courses within the area of Cyber Security. 

• Engage in regular checks and updates of the internal documentation to ensure accuracy and compliance and create understanding of a well-secured environment for others. 

• Onboard new data into Splunk and analyze it. 

• Diagnose and troubleshoot technical issues.  

The skills and experience you need

We are looking for someone who:

• Has at least 1-2 years of experience in operational IT work, preferably in the Cyber Security area. 

• Has been working with technical management support platforms such as ServiceNOW or similar.

• Has an understanding of Windows\Linux OS families as well as database platforms. 

• Is willing to pursue their career in the Cyber Security area.  

• Has demonstrated knowledge in one or more of the following areas: network security principles, host-based security principles, network and system administration, forensic analysis principles, cyber threat intelligence principles, endpoint protection, and/or counterintelligence operations. 

• Is able to effectively communicate in English - verbally and in writing – and possesses excellent communication skills to build relationships with stakeholders in a global organization.
• Is comfortable working different hours during the day as we work around the clock (i.e. morning, afternoon and night shifts).

• Has ability to thrive in a fast-paced, high-pressure environment and learn new things quickly.
• Is a highly organized, proactive, self-motivated team player with a positive mindset.  

Ideally, you would also have knowledge of the scripting languages (Python, JavaScript, Bash, PowerShell) and have passed some IT-related certificates (e.g. Microsoft SC-900, Splunk Power User, ITIL, CompTIA Security+ etc.). However, these are not considered must-haves for the role.

What we offer
 

We’re passionate about providing amazing opportunities and benefits, so you can continue and progress a lifelong career with us. Here’s what we have to offer: 
 

• Learning and career development opportunities, whether it’s online learning, management training or enhancing your skills.
• A competitive salary and incentive schemes.

• Training package aligned with technology stack used by the organization, including ITIL, Splunk, Microsoft Azure, AWS, Linux - external and internal training in place.

• Place for self-development and building your skills in the complex field of Cyber Security.

• Access to the PluralSight library.

• Stable employment in a friendly, international atmosphere.

• Hybrid work model.

• Wellbeing days.

• Private Medical Care – LuxMed.

• Life insurance – UNUM.

• Multisport card.

• Ergonomic workstations with necessary tools and equipment.

• Chill-out zone with PlayStation and table football.

• Lunch card.

• Office breakfast every week.

• Afterwork meetups.

We review applications regularly, so don’t wait  

We are building diverse, inclusive teams, and encourage applications from everyone -– from fresh talent to experienced professionals – so if you feel like this is the job for you and you see yourself working with us, just set up your profile and apply.  

To make sure your personal data is safe, we don’t look at any applications sent by email or post. If you have any questions about the role or the process, email Daria Skucha, Talent Acquisition Business Partner, at Daria.Skucha@assaabloy.com