Senior Threat Defense Security Engineer

Benefit Systems International is part of the Benefit Systems capital group, focusing on international markets. As part of the so-called foreign segment, we operate in the Czech Republic, Slovakia, Bulgaria, Turkey, and Croatia. We oversee the development of our subsidiaries and provide business, legal, and IT consulting services.

We’re looking for a proactive and people-oriented IT Support Lead to join our IT team and take ownership of both day-to-day team leadership and hands-on technical support. This role is perfect for someone who enjoys balancing strategic oversight with technical problem-solving, mentoring others, and driving service excellence

Due to the international nature of Benefit Systems International's operations, a significant part of the work is conducted in English.

Key Responsibilities:

Threat Detection & Response

• Define and maintain detection use cases and response playbooks in collaboration with the SOCaaS provider.

• Monitor and validate alerts escalated by the SOCaaS team, ensuring timely and accurate incident handling.

• Lead internal coordination for incident response, including containment, eradication, and recovery.

  
  

Threat Intelligence & Hunting

• Integrate threat intelligence feeds and contextual data into the SOCaaS platform to enrich detection capabilities.

• Conduct internal threat hunting based on SOCaaS telemetry and behavioral analytics.

• Maintain awareness of emerging threats, attack vectors, and adversary tactics (e.g., MITRE ATT&CK, TTPs).

  
  

Security Architecture & Automation

• Collaborate with security architects to design resilient defense systems aligned with Zero Trust principles.

• Automate internal security workflows and integrate with SOCaaS orchestration pipelines.

• Evaluate and deploy complementary security technologies (e.g., deception platforms, endpoint hardening).

  
  

Vulnerability & Risk Management

• Coordinate vulnerability assessments and remediation efforts with IT and DevOps teams.

• Support penetration testing initiatives.

• Contribute to risk analysis and reporting aligned with NIS2, ISO27001, and internal governance frameworks.

  
  

Collaboration & Enablement

• Act as the primary liaison between internal teams and the SOCaaS provider.

• Work closely with IT Infrastructure, DevOps, Cloud, and Compliance teams to embed security into operations.

• Provide technical guidance and training to junior staff and stakeholders.

• Document playbooks, procedures, and lessons learned from security incidents.

Qualifications

Required

• 3+ years of experience in threat detection, incident response, or SOC operations (internal or outsourced).

• Experience coordinating with external Managed Security Service Providers (MSSP/SOCaaS).

• Strong knowledge of Microsoft Defender, Azure Sentinel, and Entra ID ecosystem.

• Familiarity with threat modeling, attack simulation, and adversary emulation.

• Experience with scripting and automation (Python, PowerShell, Bash).

• Understanding of security frameworks (MITRE ATT&CK, NIST, ISO27001, OWASP).

  
  

Preferred

• Certifications such as GCIA, GCIH, CEH, OSCP, or equivalent.

• Experience with cloud security (Azure).

• Exposure to ethical hacking, digital forensics, and malware analysis.

  
  

Soft Skills

• Analytical and open mindset with attention to detail and focus on long-term resilience.

• Strong communication and documentation skills.

• High ethical standards with a capacity to adapt to a dynamic environment and the changing needs of the organization.

• Ability to work under pressure and manage multiple priorities.

• Fluent in English (minimum B2/C1)

  
  

Benefits:

• Working with excellent team with a sense of humor

• Real impact on company IT direction

• Remote, hybrid or on-site work in our modern office

• MultiSport card

• English lessons

• Lunch card

• MyBenefit cafeteria program

• Medical coverage

• Semi-annual bonuses

  
  

About our recruitment process:

·       The first stage of recruitment is a 30-minute online interview (screening) via MS Teams. The recruitment process consists of several stages, which we will happily explain during our first meeting.

·       Benefit Systems International reserves the right to contact only selected candidates.