Senior Cyber Security Engineer, Elastic (Security Operations)
Your mission
Millions of customers trust Bitpanda to protect their money, identities and digital assets. As a Senior Cyber Security Engineer, you'll play a critical role in staying ahead of evolving threats by building the capabilities that detect attacks, respond to incidents and continuously strengthen our security posture.
You'll combine deep technical expertise with engineering excellence to evolve our security operations, drive automation at scale and partner across the business to embed security into everything we build. Your work will directly shape how Bitpanda protects its customers today; and how it stays resilient tomorrow.
What you'll do
Detection engineering. Own the strategy and quality of our detection library in Elastic Security (ES|QL/KQL), designing high-fidelity detections mapped to real-world attacker techniques while continuously improving coverage, reducing noise and raising the maturity of our SOC.
Drive incident response and threat hunting. Lead investigations into complex security incidents, proactively hunt for advanced threats across AWS, Elastic and Datadog, refine response playbooks, and turn every incident into lasting improvements to our security capabilities.
Build automation that scales security. Design and implement automated investigation, enrichment and response workflows using SOAR, APIs and custom tooling, reducing manual effort while increasing speed, consistency and resilience across security operations.
Strengthen Bitpanda's security posture. Improve cloud security monitoring, system hardening and security tooling across our AWS environment, partner with engineering teams to proactively eliminate risk, and support compliance initiatives including ISO 27001, PCI DSS and DORA.
Raise the security bar across the organisation. Act as a technical leader within the Security team, mentor engineers, influence architectural decisions, champion security best practices and help build a security-first culture across Bitpanda.
Who you are:
You have 4+ years of hands-on security engineering experience, with deep expertise across incident response, threat hunting, SIEM, digital forensics and scripting.
You've built and evolved security operations; not just operated them. You have experience designing detections, automating workflows and improving security processes that deliver measurable outcomes.
You have strong experience securing cloud-native environments, particularly AWS, alongside expertise in system hardening, network security, IAM and security monitoring. Experience with Elastic Security, ES|QL and KQL is highly desirable.
You take ownership of complex technical challenges, balancing pragmatism with security excellence, and are comfortable leading initiatives from idea through implementation.
You're an excellent collaborator and communicator who enjoys mentoring others, influencing technical direction and partnering across engineering to build secure systems at scale.