Security Operations Engineer I at Mollie

📋 Description

• Build and refine automated playbooks and runbooks to standardize our response to emerging threats.
• Proactively hunt for hidden threats and develop prototype detection rules to close defense gaps before they are exploited.
• Deliver strategic security reports and dashboards that turn raw data into actionable insights for the business.
• Automate repetitive security tasks using Python and SOAR to increase team efficiency and focus on high-value initiatives.
• Optimize our detection capabilities by tuning AI/ML-driven platforms and leveraging LLMs to accelerate investigations.

🎯 Requirements

• A strong ownership mindset and the ability to thrive independently in a fast-paced, high-growth environment.
• Proven experience in Security Operations (SecOps), including incident response, threat intelligence, and proactive threat hunting.
• Practical knowledge of cloud-native stacks (GCP, Kubernetes, Terraform) and operating systems like Linux and macOS.
• Hands-on experience with SIEM, SOAR, and EDR tools (e.g., CrowdStrike, Sysdig) to monitor and secure a modern DevOps environment.
• Deep understanding of cyberattack TTPs and risk management within regulatory frameworks like PCI DSS, GDPR, and DORA.
• Proficiency in automating workflows via Python scripting and leveraging AI tools to summarize data and generate hunt queries.