Logo Delivery Hero SE

Staff Security Engineer

Neu

Job

  • Level
    Senior
  • Job Feld
    IT, Application, Security
  • Anstellung
    Vollzeit
  • Vertragsart
    Unbefristetes Dienstverhältnis
  • Ort
    Berlin
  • Arbeitsmodell
    Hybrid, Onsite
  • Job Zusammenfassung

    In dieser Rolle architekturierst du Sicherheitsinfrastrukturen und entwickelst automatisierte Erkennungs- und Reaktionssysteme, um Bedrohungen effizient zu identifizieren und zu mitigieren.

    Job Technologien

    Deine Rolle im Team

    • We are looking for a Staff Security Engineer, Global SOC (all genders) to join the Security Engineering domain on our journey to always deliver amazing experiences.
    • As a Staff Security Engineer within our Global SOC, you will be the technical anchor for our Security Monitoring and Threat Detection capabilities across a high-transaction food delivery and quick-commerce platform handling millions of daily orders.
    • As a business spanning logistics, e-commerce, and FinTech, our environment is highly regulated, in this role you will build and govern the systems that ensure rapid, high-fidelity threat detection in compliance with global frameworks.
    • You will operate at the intersection of a hands-on technical practitioner and a strategic engineering leader.
    • We are looking for someone with a strong 'builder mindset' who views threat detection as a software engineering discipline.
    • Instead of staring at dashboards, you will architect and define our log pipelines, SIEM & SOAR infrastructure, and implement Detection Engineering methodologies as code.
    • You will develop threat detection use cases, integrate Cyber Threat Intelligence, and build the automated triage workflows that seamlessly escalate validated, high-severity incidents to our CSIRT team for final containment.
    • Ultimately, you will provide a robust, scalable detection platform globally.
    • Detection & Platform Architecture: Architect, implement, strengthen and scale the Security Log Management (on AWS), SIEM and SOAR (Google SecOps) infrastructure.
    • You will own the log ingestion pipelines, ensuring high availability, performance, and optimal retention based on business requirements.
    • Engineering-Led Detection & Automation: Architect, build, and maintain log ingestion pipelines, detection rules (e.g., YARA-L), API integrations, and SOAR workflows & Plugins.
    • You will lead the charge in treating 'Detection as Code', ensuring all alerts and automated enrichments are version-controlled, tested, and deployed through CI/CD pipelines.
    • Cyber Threat Intelligence: Establish and integrate CTI capabilities to drive an intelligence-led detection strategy.
    • You will map detections to the MITRE ATT&CK framework and proactively hunt for threats specific to Delivery Hero and its entities.
    • Triage & Escalation Engineering: Design high-fidelity alert workflows.
    • For all security events, you will ensure our automated systems gather, enrich, and seamlessly conduct the right response and containment workflow.
    • Stakeholder Communication: Serve as the primary interface between the Global SOC and Engineering teams, CISOs, and the CSIRT team, translating complex detection & response architectures, log ingestion pipeline requirements into clear technical and business terms.
    • Mentorship & Leadership: Act as a hands-on technical leader and role model, actively mentoring detection engineers and regional security teams to raise the overall technical bar and promote a collective security mindset.
    • Metrics & Strategic Visibility: Maintain a Data-Driven Strategic mindset to define, track, and improve core operational metrics (Log Pipeline Health, Alert Fidelity, True Positive Rates, MTTD) to identify systemic gaps and propose strategic security investments.
    • On-Call: Participate in an on-call rotation focused on maintaining critical SIEM/SOAR infrastructure health, handling high-severity alert triage, and executing emergency escalations to CSIRT.

    Unsere Erwartungen an dich

    Qualifikationen

    • Security Tool Mastery: Deep operational and architectural expertise with modern SIEM & SOAR platforms (specifically Google SecOps / Chronicle), EDR and Cloud infrastructure (AWS/GCP).
    • CTI & Triage Workflows: Strong background in operationalizing Cyber Threat Intelligence and building scalable alert triage processes that reduce false positives and prevent alert fatigue.
    • Strategic Leadership: An exceptional communicator with the ability to influence cross-functional stakeholders (Regional Security Teams, Platform Engineering) and simplify complex systems across domains without requiring formal authority.

    Erfahrung

    • 7+ years of broad cybersecurity experience with a deep understanding of core security fundamentals, coupled with 5+ years of dedicated experience in a SOC or Threat Detection Engineering environment.
    • Engineering Skills: Proven experience utilizing Git/GitHub, CI/CD pipelines, to deploy rules, manage infrastructure and automation as code.
    • Advanced Threat Detection (Cloud, Identity & EDR): Proven deep operational experience triaging alerts and building high fidelity detections across public cloud environments (AWS/GCP), modern Identity Providers (e.g., Okta, Entra ID, Google Workspace), and EDR platforms (e.g., CrowdStrike, SentinelOne, Defender).
    • AI & Next-Gen Tooling: Experience integrating AI/LLM capabilities and MCP (Model Context Protocol) usage into Threat Detection and SOAR for automated alert triage, payload analysis, or data enrichment (highly regarded skill).

    Unser Angebot

    • Make the most of our hybrid working model and join the team for face-to-face connection and collaboration in our beautiful Berlin campus 2 days a week.
    • We offer 27 days holiday with an extra day on 2nd and 3rd year of service.
    • We will support you in developing yourself and your career growth opportunities: 1.000 € Educational Budget, Language Courses, Parental Support and access to the Udemy Business platform to explore a variety of online courses.
    • Get moving and release those wonderful, mind-boosting endorphins: Health Checkups, Meditation, Gym & Bicycle Subsidy.
    • Cash. Dough. Cheddar. Whatever you call it, we'll help you with it: Employee Share Purchase Plan, Sabbatical Bank, Public Transportation Ticket Discount, Life & Accident Insurance, Corporate Pension Plan.
    • The power of getting together over some food is unrivaled. Here are a few ways to help you do that. All the yum: Digital Meal Vouchers, Food Vouchers, Corporate Discounts.

    Benefits

    Essen & Trinken

    Work-Life-Integration

    Gesundheit, Fitness & Fun

    Themen mit denen du dich im Job beschäftigst

    Job Standorte

    • Standort Berlin

      Deutschland

    Das ist dein Arbeitgeber

    Delivery Hero SE

    Delivery Hero SE

    Niklas Östberg gründete Delivery Hero im Mai 2011 und startete seine Reise, um ein führendes global agierendes Unternehmen im Bereich Online-Essensbestellungen aufzubauen. Sein Gründungsteam, das mit Mitgliedern von Team Europe vervollständigt wurde, teilte sich Jahrzehnte an Wissen über die Arbeit mit Internetunternehmen. Genauso wichtig war jedoch, dass sie eine Vision für die Zukunft der Online-Essensbestellung teilten. Gemeinsam mit einem ausgewählten und leidenschaftlichen Team gelang es ihnen tatsächlich, das Geschäft auf die heutige Stufe zu katapultieren.

    Description

  • Gründungsjahr
    2011
  • Sprachen
    Englisch
  • Unternehmenstyp
    Etablierte Firma
  • Arbeitsmodell
    Hybrid, Onsite
  • Branche
    Handel
  • Dev Reviews

    by devworkplaces.com

    Gesamt

    (1 Bewertung)
    3.2
    • Career Growth

      3.2
    • Culture

      3.2
    • Engineering

      2.7
    • Workingconditions

      3.8
    Alle Dev Reviews anzeigen
    Logo Delivery Hero SE

    Staff Security Engineer

    Ort
    Berlin
    Arbeitsmodell
    Hybrid, Onsite
    Diversität
    Für alle Personen geeignet (m/w/d)
    Nur Englisch
    Nur Englisch erforderlich

    Weitere Jobs