Description

We are looking for a hands-on Senior Information Security Engineer to take ownership of our day-to-day security operations.

This is a key individual contributor role within a growing InfoSec function. You will work closely with our external SOC partner, internal IT teams, and clients to ensure effective monitoring, incident response, and vulnerability management.

KEY RESPONSIBILITIES

• Security event monitoring & incident response: Oversee SIEM monitoring in collaboration with an external SOC provider, review and investigate alerts, coordinate incident response, and act as a point of contact for clients during security incidents.
• Vulnerability management: Review and prioritize vulnerabilities identified through tools such as Tenable, support remediation with IT teams, and coordinate penetration testing activities, ensuring timely follow-up and resolution of identified issues.
• Security operations development: Support the development and continuous improvement of security operations processes within a growing InfoSec function.
• Risk & compliance support: Perform internal risk assessments and support ISO 27001 and GDPR-related processes, audits, and documentation.
• Security advisory & awareness: Support IT teams in security investigations, provide technical security expertise, and contribute to security awareness initiatives across the organization.
• Client & external engagement: Support client-facing security activities and participate in external assessments, audits, and investigations when required.
• Reporting & metrics: Prepare operational and management reports, track KPIs, and monitor security performance.
• Threat awareness: Stay up to date with emerging threats and industry trends to continuously improve the organization's security posture.

Requirements

Core experience

• Strong hands-on experience in Security Operations, including incident response, SIEM monitoring, and vulnerability management.
• Experience working with SIEM tools and external SOC providers, including alert investigation and incident handling.
• Practical experience with vulnerability management tools (e.g. Tenable) and remediation processes.
• Experience coordinating or supporting penetration testing and remediation activities.
• Experience working in environments with high security and client requirements.
• Good understanding of modern cyber threats, attack vectors, and data exfiltration risks.
• Ability to work independently, take ownership, and operate effectively in a changing environment.

Security & compliance exposure

• Working knowledge of ISO 27001 processes and security controls.
• Experience supporting security audits, documentation, and compliance activities.
• Familiarity with GDPR and data protection requirements.

Education & certifications

• Relevant certifications (e.g. CISSP, CISM, CEH or similar) are expected.
• Experience with ISO 27001 (Lead Auditor or similar) is a plus.
• Degree in Cybersecurity, IT, or a related field is preferred.

Benefits

• Full-time contract.
• Hybrid type of work.
• Medical healthcare and Multisport card.
• Opportunity to shape and improve security operations in a growing global environment.
• High level of ownership and autonomy.
• Friendly and open-minded teams.