Cyber Security Engineer - Croatia

Role OverviewAn international organisation is seeking a hands‑on Senior Cybersecurity Engineer to strengthen and mature its security capabilities across cloud, identity, and operational environments. Fully remote (reporting into a hiring manager based in another region).This is a pivotal role focused on building centralised visibility, improving detection and response, and preparing the organisation for a future managed Security Operations Centre (SOC) capability.You will work across cloud security, identity, endpoints, and infrastructure, while acting as a key technical partner to an external managed SOC provider. As the security function evolves, this role offers a clear progression path toward Cybersecurity Architect or Security Lead.Key Responsibilities:Security Monitoring & DetectionDesign and implement centralised security monitoring (SIEM or equivalent)Prepare environments for successful managed SOC integrationImprove detection use cases to increase signal quality and reduce noiseEnhance visibility across cloud, identity, and operational systemsManaged SOC IntegrationAct as the primary technical liaison for the managed SOC providerSupport SOC onboarding, log ingestion, tuning, and use‑case developmentValidate alerts, incident handling, and reporting outputsContinuously refine detection fidelity and response effectivenessCloud SecurityManage and optimise cloud‑based security controlsImprove web application security, bot protection, and traffic filteringMonitor and analyse traffic patterns to identify threats and anomaliesStrengthen resilience against denial‑of‑service and abuse scenariosIdentity & Collaboration Platform SecurityEnhance identity protection and conditional access controlsImprove email security and anti‑phishing defencesStrengthen audit logging, monitoring, and investigation workflowsSupport investigations into user activity and account compromiseIncident Response & Operational SecurityEstablish internal incident response processes aligned with SOC workflowsDefine runbooks, escalation paths, and operational responsibilitiesSupport incident investigations and post‑incident reviewsVulnerability Management & Security TestingImplement vulnerability scanning across infrastructure and endpointsIntegrate security testing into CI/CD pipelinesDrive remediation efforts and track risk reduction initiativesSecurity Engineering & ArchitectureImprove security controls across cloud, on‑premise, and hybrid environmentsEmbed security into both digital and operational technology environmentsSupport secure design, architecture reviews, and threat modellingRisk & ComplianceSupport implementation of controls aligned to recognised frameworksContribute to risk identification, mitigation, and reportingAssist with audit readiness and evidence collectionStakeholder EngagementBuild strong working relationships with business and technology teamsAct as a trusted internal security advisorImprove awareness of shared security responsibilities across the organisationExperience & SkillsRequired5+ years’ experience in cybersecurity or security engineeringHands‑on experience with:SIEM and log management platformsCloud‑based security controlsIdentity and access managementEndpoint protectionStrong troubleshooting, threat‑hunting, and investigation skillsExperience operating in complex, distributed environmentsFamiliarity with security frameworks such as ISO 27001 or NISTPreferredExperience working with or integrating managed SOC servicesPrior involvement in log onboarding and detection tuningKnowledge of security controls in CI/CD pipelinesExposure to regulatory or operational resilience frameworksRelevant security or cloud certificationsWhat Success Looks Like (6–12 Months)Centralised security visibility fully established and SOC‑readyManaged SOC successfully onboarded and optimisedHigh‑quality detection use cases in place with low false‑positive ratesSignificantly improved cloud and identity security postureIncident response processes aligned with SOC operationsVulnerability management operating effectivelyClear progress toward audit and resilience readinessOriginally posted on Himalayas

Role OverviewAn international organisation is seeking a hands‑on Senior Cybersecurity Engineer to strengthen and mature its security capabilities across cloud, identity, and operational environments. Fully remote (reporting into a hiring manager based in another region).This is a pivotal role focused on building centralised visibility, improving detection and response, and preparing the organisation for a future managed Security Operations Centre (SOC) capability.You will work across cloud security, identity, endpoints, and infrastructure, while acting as a key technical partner to an external managed SOC provider. As the security function evolves, this role offers a clear progression path toward Cybersecurity Architect or Security Lead.Key Responsibilities:Security Monitoring & DetectionDesign and implement centralised security monitoring (SIEM or equivalent)Prepare environments for successful managed SOC integrationImprove detection use cases to increase signal quality and reduce noiseEnhance visibility across cloud, identity, and operational systemsManaged SOC IntegrationAct as the primary technical liaison for the managed SOC providerSupport SOC onboarding, log ingestion, tuning, and use‑case developmentValidate alerts, incident handling, and reporting outputsContinuously refine detection fidelity and response effectivenessCloud SecurityManage and optimise cloud‑based security controlsImprove web application security, bot protection, and traffic filteringMonitor and analyse traffic patterns to identify threats and anomaliesStrengthen resilience against denial‑of‑service and abuse scenariosIdentity & Collaboration Platform SecurityEnhance identity protection and conditional access controlsImprove email security and anti‑phishing defencesStrengthen audit logging, monitoring, and investigation workflowsSupport investigations into user activity and account compromiseIncident Response & Operational SecurityEstablish internal incident response processes aligned with SOC workflowsDefine runbooks, escalation paths, and operational responsibilitiesSupport incident investigations and post‑incident reviewsVulnerability Management & Security TestingImplement vulnerability scanning across infrastructure and endpointsIntegrate security testing into CI/CD pipelinesDrive remediation efforts and track risk reduction initiativesSecurity Engineering & ArchitectureImprove security controls across cloud, on‑premise, and hybrid environmentsEmbed security into both digital and operational technology environmentsSupport secure design, architecture reviews, and threat modellingRisk & ComplianceSupport implementation of controls aligned to recognised frameworksContribute to risk identification, mitigation, and reportingAssist with audit readiness and evidence collectionStakeholder EngagementBuild strong working relationships with business and technology teamsAct as a trusted internal security advisorImprove awareness of shared security responsibilities across the organisationExperience & SkillsRequired5+ years’ experience in cybersecurity or security engineeringHands‑on experience with:SIEM and log management platformsCloud‑based security controlsIdentity and access managementEndpoint protectionStrong troubleshooting, threat‑hunting, and investigation skillsExperience operating in complex, distributed environmentsFamiliarity with security frameworks such as ISO 27001 or NISTPreferredExperience working with or integrating managed SOC servicesPrior involvement in log onboarding and detection tuningKnowledge of security controls in CI/CD pipelinesExposure to regulatory or operational resilience frameworksRelevant security or cloud certificationsWhat Success Looks Like (6–12 Months)Centralised security visibility fully established and SOC‑readyManaged SOC successfully onboarded and optimisedHigh‑quality detection use cases in place with low false‑positive ratesSignificantly improved cloud and identity security postureIncident response processes aligned with SOC operationsVulnerability management operating effectivelyClear progress toward audit and resilience readinessOriginally posted on Himalayas