Senior Security Engineer

Sybilla Technologies Sp. z o.o. is hiring a Senior Security Engineer with a strong Blue Team background and exposure to Red Team activities as an advantage. The role involves ownership of the company’s cyber defense across on-prem infrastructure, networks, and Microsoft-based environments, analyzing complex security incidents, and defining and executing the security roadmap in cooperation with IT and other stakeholders.

• Minimum 5 years of professional experience in cybersecurity.
• English at B2/C1 level, sufficient for collaboration and documentation.
• Strong expertise in network defense.
• Hands-on experience with the Microsoft security stack.
• Documented experience in incident management and response.
• Ability to create and maintain a Security Playbook with incident runbooks.

Nice to have:

• Experience in simulating cyberattacks and testing defenses.
• Practical experience with CIS and NIST frameworks.
• Experience with automated vulnerability scanning (on-prem and cloud).
• Standardizing system hardening for Windows and Linux (Intune / GPO).

• Own the security posture end-to-end, ensuring systems remain secure and operational.
• Define, maintain, and execute the security strategy and roadmap.
• Identify, analyze, and remediate vulnerabilities across infrastructure and security systems.
• Support and participate in internal and external security audits.
• Document security incidents, vulnerabilities, and corrective actions.
• Continuously improve security configurations, standards, and procedures.
• Implement and maintain technical and organizational security controls.
• Develop organization-wide security measures aligned with business goals.
• Design and develop next-generation firewall solutions.
• Monitor emerging cybersecurity threats and apply relevant improvements.
• Maintain and update security policies, ensuring they are practical and business-aligned.
• Detect, analyze, and respond to security incidents, minimizing business impact.
• Lead incident response and recovery, including lessons-learned documentation.
• Prepare clear security reports for technical teams and management.
• Ensure security is included from the start in IT projects.
• Cooperate with other departments to enforce security guidelines and standards.