Cyber Security Incident Responder
Join us in this role where you’ll take charge of cybersecurity incidents and drive and develop our cyber response, threat hunting, and forensic investigation activities to protect our company, our employees, the production assets, and intellectual property from threat actors that seek harm to us and our partners. We invest in modern and advanced technologies to support the team members.
Welcome to Cyber Defence Centre
You’ll be part of Cyber Defence Centre where you, together with your colleagues, will work in close collaboration with other security departments, intelligence vendors, and national authorities around the world. The work environment is very healthy and diverse. You’ll have time to focus, deep dive, learn, and improve, so you’re the best at what you do, and you’ll have plenty of opportunities to excel, innovate, and push the conventional boundaries further. As a team, we are constantly developing, so you’ll find challenges that keep you motivated for months ahead.
You’ll play an important role in:
-
- leading incidents and being a technical analyst in cyber response activities, both in IT and OT environments globally within the Cyber Defence Centre
- analyzing and understanding information security events as well as analyzing incidents to identify root cause and impact
- informing stakeholders and improving Ørsted’s security posture based on reporting and lessons learned from incidents
- collecting incident report information and coordinating analyses
- technical writing and updating incident analyst playbooks on operational and coordination level
- designing and executing intelligence-based threat hunting activities and driving forensic investigations to completion
- maintaining our 24/7 readiness in responding to cyber-attacks against Ørsted, around the globe.
To succeed in the role, you:
-
- have some years of incident response experience
- understand a broad palette of source material, whether cloud-related logs, network captures and forensic images
- have experience in SIEM, XDR, networking and similar technologies
- have a well-developed sense for communication to key stakeholders
- are self-driven with in-depth technical knowledge, are curious in nature, and a team player
- can keep updated on the latest developments in cybersecurity, supported by inputs from the team and formal training
- have industry wide recognized certifications such as GCFA, GCFE or similar.
Maybe you’ve read the above and can see you have some transferable skills, even though they don’t quite match all the points. If you think you can bring something to the team, we still encourage you to apply.
Shape the future with us
Send your application to us as soon as possible. We’ll be conducting interviews on a continuous basis and reserve the right to take down the advert when we’ve found the right candidate.
As an applicant or employee, you may request reasonable work and position accommodation or adjustments via accommodation@orsted.com.
Please note that for your application to be taken into consideration, you must submit your application via our online career pages and answer the screening questions relevant for your country. We don't take applications or inquiries from external recruiters or agencies into account for this position.
Position salary range:
For this position, the expected base pay range is zł22,000.00- zł33,000.00 for the advertised location. The offered base salary will be determined within this range based on relevant skills, experience, and expected role fulfilment within the stated pay range to ensure a fair and competitive offer. Where applicable, you may also be eligible for variable payment and a comprehensive benefits package.
Our benefits package:
Our benefits package: For this position, employees who meet eligibility requirements have access to: private healthcare (Medicover and CM Damiana) fully paid by the employer, with optional add-ons (dental care, senior packages, parents/parents-in-law cover); group life insurance, overseas health insurance, and 24/7 accident insurance from day one; access to an employee pension plan (PPE) with a 3.5 % employer contribution after 6 months; a vacation bonus of PLN 1200 once per year; a multimedia package (mobile phone and laptop or tablet); ergonomics support, health apps, and psychological support via Wellbee; a Multisport card and the MyBenefit cafeteria system with a wide range of sports and lifestyle benefits; free fruit and beverages, team events, and company initiatives; glasses subsidy.
Pre-employment background check:
This position requires a background check as part of the hiring process and the offer is dependent on the outcome of this check. You will receive more information during the recruitment process. Background checks are conducted by an external provider in accordance with local legal requirements.
Warsaw, PL