yandex
H
hellofresh
Страна
Польша
+500% приглашений

Откликайтесь
на вакансии с ИИ

Ускорим процесс поиска работы
ГибридПолная занятость

Security Engineer (Detection & Response)

ИИОценка ИИ

HelloFresh — известный международный бренд с сильной инженерной культурой. Вакансия предлагает работу с современным стеком (AWS, SIEM, SOAR) и четкие перспективы роста в глобальной команде.


Вакансия из Quick Offer Global, списка международных компаний
Пожаловаться

Сложность вакансии

ЛегкоСложно
ИИОценка ИИ

Роль требует минимум 2 года опыта в SOC и глубоких знаний AWS. Сложность заключается в необходимости совмещать навыки реагирования на инциденты с программированием для автоматизации безопасности (IaC).

Анализ зарплаты

Медиана55 000 €
Рынок45 000 € – 70 000 €
ИИОценка ИИ

Предлагаемая позиция соответствует рыночному уровню для специалистов среднего звена (Middle) в Варшаве. В крупных международных продуктовых компаниях, таких как HelloFresh, зарплаты обычно находятся в верхнем квартиле рынка.

Сопроводительное письмо

I am writing to express my strong interest in the Security Engineer (Detection & Response) position at HelloFresh. With a solid background in SOC operations and a deep understanding of AWS cloud security, I am eager to contribute to maturing HelloFresh’s Security Logging & Monitoring Program. My experience in automating incident response workflows and managing cloud-native SIEM platforms aligns perfectly with your goal of reducing dwell time and improving MTTD&R.

Throughout my career, I have focused on bridging the gap between threat detection and automated remediation. I am particularly drawn to HelloFresh’s autonomous, cross-functional environment and the opportunity to work with a modern tech stack like EDR/EPP and IaC for security automations. I am confident that my technical skills in log analysis and network containment, combined with my proactive approach to threat intelligence, will make me a valuable addition to the HelloTech team in Warsaw.

+250% к просмотрам

Составьте идеальное письмо к вакансии с ИИ-агентом

Составьте идеальное письмо к вакансии с ИИ-агентом

Откликнитесь в hellofresh уже сейчас

Присоединяйтесь к HelloFresh в Варшаве и защищайте глобальную платформу, которой доверяют миллионы клиентов!

Описание вакансии

Work with HelloFresh in Warsaw and its HelloTech organisation, HelloFresh’s global technology backbone with more than 1000 people, building the digital products that power our end-to-end food experience. From meal kits and ready-to-eat meals to specialty offerings like pet food and premium meat & seafood, HelloTech creates the platforms that bring tailored food solutions to millions of customers every month.

Our subscription-based, direct-to-consumer model relies on technology at every step, from customer-facing apps and personalization logic to pricing, forecasting, supply chain optimization, and initiatives that help reduce food waste. While our brands operate independently to serve distinct customer needs, they are united by shared platforms, data, and operational excellence built by HelloTech.

HelloTech works in autonomous, cross-functional alliances, each owning a specific product or domain end to end. By working with our Warsaw office, you will help shape scalable, data-driven products used across 18 countries, working with a modern tech stack and international teams to continuously improve how people discover, order, and enjoy HelloFresh’s products, today and in the future.

About the role: What's in the Box

This journey involves keeping HelloFresh a trusted name—someone with a passion for security and an appetite for new challenges. Security Engineers work in a variety of ways to constantly iterate and improve HelloFresh’s security posture.

This role aims to improve the HelloFresh Security Logging & Monitoring Program by maturing the tools, processes, and playbooks to reduce dwell time (indicators of which would be lowered MTTD&R). You will facilitate efficient Incident Detection and Response in AWS cloud and enterprise IT environments.

At HelloTech, flexibility and cross-functional collaboration are core to how we work. While this role is aligned to a specific focus area, strong candidates may also be considered for opportunities across different teams or projects.

What you’ll do: The Recipe

  • Responsible for SOC monitoring, use-case building, triage, and advisory using cloud-native SIEM platforms.
  • Conduct initial triage of security events and incidents and document progress throughout the Incident Response Lifecycle.
  • Automate, optimize, and operate modern security solutions like EDR/EPPs and conventional Firewalls, IDS/IPS, Email Security, VPN, and MDM tools.
  • Leverage premium and open-source threat intel feeds to regularly sweep environments against rising APT campaigns.
  • Prepare status reports and follow up with the stakeholders through Jira and Incident Mgmt. Platform to close the remediation loop.
  • Contribute to the continuous improvement of security logging and monitoring maturity.

What you’ll bring: The Ingredients

  • A minimum of 2 years of experience working in mature SOC environments.
  • Security monitoring and incident response experience in public cloud environments such as AWS.
  • Experience with cloud SIEM & SOAR platforms, DDoS mitigation and prevention tools, and Layer-7 Web-based perimeter security controls.
  • Understanding of network intrusion methods, network containment, segregation techniques, and technologies such as Sandboxes and Intrusion Detection/Prevention Systems (ID/PS).
  • Ability to operate EDR, EPP, and Device Management solutions as per best security practices.
  • Decent programming skills to enable data processing, IaC, and security automations.
  • Good communication and reporting skills.
  • Experience with log analysis stacks like ElasticSearch, Splunk, or SumoLogic.
  • Open to working on-call in rotational shifts.

Above all, we are looking for individuals who will make HelloFresh better. We believe there are many different ways of developing skills and we love diverse experiences! So even if you don’t “tick all the boxes” but think you’d thrive in this role, we would really like to learn more about you.

What we offer: The Toppings

  • Global collaboration at scale: Collaborate with experienced engineers and product partners across HelloTech’s international teams, in a culture of active knowledge sharing.
  • Technology with real-world impact: Build and operate modern systems at global scale, supporting 6+ million customers and complex supply chain operations.
  • Technical/Product/Design leadership: Drive best practices and influence architecture/design, quality, and ways of working in an autonomous, product-led setup.
  • End-to-end development/delivery: Drive decisions from problem definition to production, improving systems and enabling long-term scalability.
  • Access to workspace at Warsaw Centre Point: The hub offers modern facilities including showers, breakout zones, outdoor space, cycle parking, and refreshments (coffee, soft drinks, and fruit).

Are you the missing ingredient? If this sounds like a tasty opportunity, we’d be excited to hear from you. We aim to review your profile and respond within 5 business days.

#IT & #Security

+400% к собеседованиям

Создайте идеальное резюме с помощью ИИ-агента

Создайте идеальное резюме с помощью ИИ-агента

Навыки

  • AWS
  • SIEM
  • SOAR
  • EDR
  • EPP
  • Firewall
  • IDS/IPS
  • Email Security
  • VPN
  • MDM
  • Jira
  • ElasticSearch
  • Splunk
  • SumoLogic
  • Infrastructure as Code

Возможные вопросы на собеседовании

Проверка практического опыта работы с облачными инцидентами.

Опишите ваш процесс расследования подозрительной активности в среде AWS: какие инструменты и логи вы используете в первую очередь?

Оценка навыков автоматизации, упомянутых в вакансии.

Какие задачи по обеспечению безопасности вы автоматизировали ранее с помощью программирования или инструментов SOAR?

Проверка понимания современных угроз.

Как бы вы настроили мониторинг для обнаружения APT-кампании, использующей легитимные инструменты администрирования для перемещения по сети?

Оценка опыта работы с сетевой безопасностью.

В чем разница между подходами к фильтрации трафика на уровне L7 и традиционными файрволами в контексте защиты веб-приложений?

Проверка готовности к операционной работе.

Расскажите о самом сложном инциденте, который вы обрабатывали во время дежурства (on-call). Как вы приоритизировали задачи?

Похожие вакансии

H
HuntTech
217 000 ₽ – 268 000 ₽

ИБ-специалист (Senior)

SeniorУдалённо
SoC · EDR · HIPS · Firewalls · Network Segmentation · Vulnerability Management · GLPI · 2FA · Encryption · MDM · Positive Technologies Vulnerability Management · Efros DefOps
+12 навыков
E
EVOSTAFF
190 000 ₽

Аналитик по информационной безопасности (не appsec)

MiddleУдалённо
Kubernetes · Unix · Keycloak · Linux · Windows · Information Security · PCI DSS · Network Security · Microservices
+9 навыков
T
TopSelection
350 000 ₽ – 400 000 ₽

AppSec Engineer (Middle+/Senior)

SeniorУдалённо
Application Security · Penetration Testing · Code Review · Burp Suite · DAST · SAST · SCA · Threat Modeling · OWASP Top 10 · SDLC
+10 навыков
Т
Тензор
154 000 ₽ – 216 000 ₽

Инженер по информационной безопасности

Удалённо
Python · Node.js · C++ · SAST · Application Security · OWASP Top 10 · CWE Top 25 · OWASP ASVS · Web Application Security
+9 навыков
Г
ГНИВЦ
400 000 ₽ – 450 000 ₽

Архитектор ИБ

Удалённо
IAM · IDM · OAuth2 · OpenID Connect · SAML · JWT · JWS · JWE · MFA · WebAuthn · FIDO2 · AppSec · OWASP Top 10 · OWASP ASVS · Zero Trust · Cryptography · Microservices · API Security
+18 навыков
Ц
Циан
360 000 ₽ – 430 000 ₽

Senior InfraSec engineer

SeniorУдалённо
Cloud Security · Network Security · IAM · PAM · Hardening · Vulnerability Management · Security by Design · Kubernetes · Docker
+9 навыков
более 1000 офферов получено
4.9

1000+ офферов получено

Устали искать работу? Мы найдём её за вас

Quick Offer улучшит ваше резюме, подберёт лучшие вакансии и откликнется за вас. Результат — в 3 раза больше приглашений на собеседования и никакой рутины!

H
hellofresh
Польша