Cyber Security Engineer

Role Overview

We are looking for a confirmed mid-level to senior Cyber Security Engineer / Incident Response Analyst to support international security operations across the EU and US. The role focuses on incident response, threat hunting, phishing analysis, SIEM/EDR monitoring, and vulnerability management.

Key Responsibilities

• Monitor, investigate, and respond to security incidents across endpoint, identity, network, and email environments
• Perform incident triage, analysis, escalation, and resolution tracking
• Conduct threat hunting and improve detection capabilities
• Investigate phishing, malware, suspicious access, and account compromise cases
• Work with SIEM/EDR/XDR tools such as Microsoft Sentinel, Defender, CrowdStrike Falcon, or similar
• Support vulnerability management, remediation follow-up, and security hardening activities
• Collaborate with distributed teams across the US and EU
• Document findings, actions, and technical recommendations

Required Skills & Experience

• 5 years of experience in cybersecurity, incident response, or security operations
• Strong hands-on experience with SIEM, EDR/XDR, and threat detection
• Good knowledge of Microsoft Sentinel, Microsoft Defender, CrowdStrike, or similar tools
• Experience with threat hunting, phishing investigations, and vulnerability management
• Good understanding of Windows, Linux, networking, and security best practices
• Working knowledge of KQL, Python, SQL, or similar
• Strong communication skills in English

Preferred Qualifications

• Experience with Splunk, ELK, Wazuh, Fortinet, Check Point, Netskope, or similar
• Familiarity with MITRE ATT&CK
• Exposure to offensive security tools such as Nmap, Nessus, Burp Suite, Wireshark, Metasploit
• Experience in international or distributed teams

Contract & Work Model

Freelance / B2B

• Full-time engagement
• Long-term collaboration

Remote

• Candidate must be based in Europe

Seniority

• Confirmed Mid-Level to Senior