🇵🇹 Lisbon
Engineering
Full-time
Security Operations Engineer
Your Opportunity:
Mollie is a fast growing financial services company, and security is an essential and integral part of our business. The role of the Security Operations Engineer lies at the heart of it all.
This is a hands-on role focused on providing operational security for Mollie through resolving security incidents and running various security operations activities, including threat hunting, analysis of threat intelligence and automation.
You will join the existing SecOps team, consisting of mid- to senior-level experts, where you will find a lot of opportunities to shine and make an impact.
This role requires assisting in a wide range of security initiatives, involving self-directed and informed decision-making on critical security topics.
What you'll be doing:
Respond to security incidents, collaborating with other internal teams and external parties to ensure coordinated responses and minimize business disruption.
Investigate and resolve security incidents, following established procedures and best practices.
Develop and enhance security playbooks and runbooks to document standardized procedures for incident response, threat hunting etc.
Collaborate with the Security Engineering team to improve our overall security posture and detection capabilities.
Proactively hunt for threats not easily detected by existing use cases
Define monitoring scenarios and develop prototype rules based on security intel or defense gaps.
Participate in the incident response rotation and on-call procedures
Identify potential threats, delivering strategic reports and changes like use case updates to minimise the impact of the threats
Create reports, dashboards, and security metrics to communicate security posture and insights.
Automate repetitive security tasks to improve efficiency and free up time for more strategic security initiatives.
Identify areas for optimization, propose and implement process changes, collaborating with the team for efficient security operations
What you'll bring:
Experience in a fast-growing product company, with a strong ownership mindset in a fast-paced environment.
Experience working within a Security Operations (SecOps) team in any role is preferred.
Ability to work independently, prioritize workload, and collaborate with cross-functional teams.
A customer-centric approach that is both pragmatic and risk-aware.
Strong understanding of security concepts including cyberattacks, related TTPs, threat vectors, controls, risk management, and incident response.
Experience with Security Incident and Event Management and Security Orchestration and Automated Response
Experience with Threat Intelligence, Threat Hunting, Endpoint Detection and Response tools (e.g. Crowdstrike, Sysdig)
Experience working in a DevOps environment and methodologies, ideally with a DevSecOps approach.
Experience working with regulatory compliance frameworks and information security management standards like NIST, PCI DSS, GDPR, and DORA.
Experience with a “3 lines of defense” model, dealing with auditors, and managing controls.
Familiarity with cloud-based platforms (e.g., GCP) and experience with Linux, macOS, Kubernetes, Terraform, and GitLab.
Experience automating workflows, with Python scripting preferred.
*Kindly note that relocation support is not offered for candidates outside of Europe for this role.
Benefits
How we hire
Apply
Our Talent Acquisition team and hiring manager will review your application, and respond within 2 weeks.
Screening call
If you seem like a Mollie-in-the-making, we’ll invite you to a screening call so we can learn more about each other.
Are you the one?
You'll have two or more interviews. And if it's a highly technical role, we'll also assess the specific skills you'll need.
More jobs in this category
We don't have any open positions