Cyber Security Operation Senior

Posted 06 January 2026
Salary Competitive
LocationPoland
Discipline Cyber Security
Reference75750
Remote working Remote

Job description

Freelance/Remote with Occasional Travel  - EU Nationality Required

We are looking for a Senior Cybersecurity Operations Management Specialist to support and strengthen cybersecurity operations in a large, complex, and security-sensitive IT environment.

The role combines hands-on technical expertise with operational leadership, focusing on Security Operations Centre (SOC) activities, Incident Response, Digital Forensics, and continuous improvement of monitoring and response capabilities across on-prem, cloud, and hybrid infrastructures.

This position requires the ability to operate effectively in high-pressure situations, coordinate with multiple technical and non-technical stakeholders, and contribute to the maturity of cybersecurity operational processes.

Key Responsibilities

  • Lead and support SOC operations, including incident detection, triage, containment, eradication, and recovery

  • Coordinate and oversee Cybersecurity Incident Response and Digital Forensic Investigations

  • Review, optimise, and enhance logging, monitoring, and detection capabilities

  • Manage and improve security policies and rules across on-premises and cloud environments

  • Apply threat-hunting techniques and map adversary behaviour using the MITRE ATT&CK framework

  • Support and mentor technical teams during complex security incidents

  • Produce structured reports on findings, gaps, and improvement recommendations

  • Collaborate with internal technical teams and external service providers to ensure effective security operations

Required Skills & Experience

Experience

  • 12+ years of experience in IT and cybersecurity operations

  • Strong background in SOC operations and Incident Response for large or complex environments

  • Proven experience leading or coordinating high-impact cybersecurity incidents

  • Experience working in security-sensitive or restricted environments

  • Familiarity with data protection and information security regulations

Technical Expertise

  • Strong hands-on experience with SIEM platforms (e.g. Splunk)

  • Experience with EDR solutions (e.g. Carbon Black or equivalent) and SOAR tooling

  • Digital forensics and malware analysis in enterprise environments

  • Threat hunting and adversary analysis using MITRE ATT&CK

  • Knowledge of network security controls (FW, IDS/IPS, WAF, VPN, proxy)

  • Security operations across on-prem, cloud, and hybrid infrastructures

  • Understanding of information security management standards (e.g. ISO 27001, NIST)

Soft Skills & Competencies

  • Strong analytical and problem-solving skills

  • Ability to work calmly and decisively under pressure

  • Excellent communication skills in English (written and spoken)

  • Ability to operate in multi-team and multicultural environments

  • High level of discretion, integrity, and professionalism

What’s Offered

  • Long-term contract with high stability and extension potential

  • Predominantly remote delivery model within the EU

  • Senior, impactful role within a mature cybersecurity operations environment