SOC Engineer

City:  Warsaw
Country/Region:  PL
Application Deadline:  N/A

Would you like to use your security operations expertise and development skills to help transform our Security Operations Center into a leading practice SOC with extended integrations and automation at the world’s largest jewelry brand? If so, then please keep reading! 


At Pandora we have combined all our tech, digital and data talents to accelerate and drive Pandora’s digital journey. As we are in the process of revamping the digital landscape and strengthening our cyber security posture, we are growing our digital team and searching for a SOC Engineer to join our growing Cyber Security Operations team who can help us on this journey.   
As SOC Engineer you will be the primary voice in designing and implementing our underlying SecOps infrastructure to support our ambitious detection and response goals. In your daily work you will support, design, and configure our information systems in accordance with the detect and respond roadmap.  


You will be instrumental in identifying gaps in our processes, detection and response coverage, incident management components and help improve this with your engineering skill set. Moreover, you will be supporting implementation of automation and orchestration functionality across our SecOps tool stack.  


As SOC Engineer, you will be co-responsible for building the security architecture and systems within SecOps, as well as maintaining and improving the security monitoring and analysis tools. With your analytical mindset and experience you will help translate SOC Analysts' needs into new log sources, optimized parsing, more actionable reporting, and user-assisted automated operations in our SOAR platform in order to improve detection and response. 

In this role your key responsibilities will be to: 
Serve as SIEM subject matter expert:  

  • Understand our IT estate and develop detection requirements accordingly 

  • Integrate new data sources in an intelligent manner 

  • Develop parsers of new log sources if required 

  • Develop, implement and test new detection use-cases across our security toolkit 

  • Collaborate with other security analysts and threat and vulnerability specialists to improve detection and alerting capabilities including tuning to minimize false positive and negatives 


and as SOC Engineer with a holistic technical focus: 


  • Improve and maintain our detect and respond architectural roadmap and technical blueprint 

  • Work directly with security analysts, solution architects and other SOC engineers to improve our detect and respond workflows. including vulnerability management  

  • Integrate intelligence feeds into our tool stack 

  • Script and automate workflows for security processes and procedures where possible 

  • Translate security policies into effective technical use-cases patterns with automation in mind 

  • Work directly with IT Service Management to integrate and streamline SOC processes with ITSM  

  • Develop and automate IR playbooks 

  • Support practical exercises to continuously test detection and response capabilities 

  • Perform evaluation and selection of infrastructure or security related vendor products and solutions 


Team player passionate about log data and automation engineering 
We are looking for an experienced security analyst who has acquired security engineering and developer skills during your career. You hold a proven track record in designing and building intelligent SOC technology with automation and integration as key enablers.   


A successful candidate prioritizes well, communicates clearly, and has a consistent track record of delivering results. You probably have a degree in Computer Science, Engineering, Information Systems or similar.  


You have 3-5+ years’ experience in working in and around a Security Operations Center and have demonstrated the ability to integrate several different log source types into SIEM and SOAR platforms.  

  • Experience of working with development and infrastructure teams to drive greater visibility and lower false alert rates 

  • Have practical experience working with various security log sources 

  • Have expert experience with Microsoft Sentinel and the Defender Suite 

  • Experience with SOAR automation and orchestration processes and tools 

  • Knowledge of network security in IaaS, PaaS and SaaS multi-cloud environments 

  • Have solid scripting experience with PowerShell and/or Python 

  • Experience interacting with security operations tools through API 

  • Have SOC analytical experience with most common detection log sources.  


About Pandora 


Pandora is the world's largest jewellery brand. The company designs, manufactures and markets hand-finished jewellery made from high-quality materials at affordable prices. Pandora jewellery is sold in more than 100 countries through 6,500 points of sale, including more than 2,500 concept stores. 


Headquartered in Copenhagen, Denmark, Pandora employs 32,000 people worldwide and crafts its jewellery at two LEED-certified facilities in Thailand. Pandora is committed to leadership in sustainability and will purchase only recycled silver and gold for crafting its jewellery by 2025 and halve greenhouse gas emissions across its value chain by 2030. Pandora is listed on the Nasdaq Copenhagen stock exchange and generated sales of DKK 26.5 billion (EUR 3.6 billion) in 2022. 


Pandora’s recruitment procedures are designed to be transparent and clear for all candidates. This helps us ensure that applicants are provided with a fair and equal opportunity to demonstrate their competencies and skills by removing blocking factors, possible biases, and risks of discrimination. We encourage everyone applying to our vacancies to refrain from adding identity-related elements such as a photo, marital status and age.