Cyber Security SIEM/ UEBA Engineer

Offer parameters
hybrid work
Набір відкритий для українців
Recruitment open to Ukrainians
Warszawa, Masovian (Poland)

Your responsibilities

You will be working in one of the most innovative teams in the Credit Suisse IT security domain, the User & Entity Behavior Analytics team. The team develops and operates the UEBA platform that is used to detect Cyber and Insider’s Threats.
The UEBA platform rapidly processes large volumes of data from many disparate sources, using advanced machine learning analytics, to detect and alert of any abnormal behavior of users and systems. The service sends alerts to the bank’s security and risk teams, who then analyze and process these incidents.
As a UEBA DevOps engineer, you will be responsible for designing, developing, and testing new use cases for customers and onboarding them to the service. You will also manage and operate the UEBA platform, across multiple regions and in the cloud.
Your future colleagues
The UEBA team is a global, multi-cultural team of skilled Cyber Security Engineers who work with departments in all regions and across multiple time zones within Credit Suisse. We are a friendly, collaborative, and innovative team, which values diversity, team-work, learning together and are committed to achieve our goals and to serve our customers.
We provide various opportunities for education and training to develop your career and extend your skills and knowledge. We are a department which values Diversity and Inclusion (D&I) and is committed to realizing the firm’s D&I ambition which is an integral part of our global cultural values.

Our requirements

  • Bachelor's degree in Computer Science or Information Systems or other technically relevant degree
  • Experience in working with Linux servers and applications, in VMware or Docker environment, automation, monitoring and trouble shooting
  • 3+ years of experience using Splunk – parsing logs, creating detection rules, developing applications, correlation SPL queries and dashboards
  • Background in Cyber Security – familiarity with attack vectors and techniques (MITRE), network security protocols and IT security products
  • Demonstrable experience in development and operations (DevOps), using, as many of the following: Odyssey framework, Python, bash/shell, SQL, REST API, Logstash, Jenkins, Ansible
  • Knowledge of any of major UEBA platforms will be an asset
  • Outstanding written and verbal communication in English
  • Teamwork, collaboration, and problem-solving mind-set
  • Ability to deliver project milestones, on time, while dealing with unplanned operational issues and customers' requests
  • Flexible, curious and initiative taker
  • A fast learner and high-performer
  • Dedication to fostering an inclusive culture and value diverse perspectives

What we offer

  • Pension plan
  • Training and development
  • Internal Mobility
  • Other optional
  • Language training course
  • Mentoring
  • Health promotion: Multisport card, sporting events and groups within Credit Suisse (skiing trips, football team, running team, tennis training course etc.)
  • Employee discounts on various products and services (event tickets, consumer products, etc.)
  • Relocation package
  • Employee Referral Program


  • private medical care
  • life insurance
  • remote work opportunities
  • flexible working time
  • parking space for employees
  • extra social benefits
  • kindergarten / nursery
  • christmas gifts
  • employee referral program
  • charity initiatives
I apply to:
Warszawa, Masovian (Poland)
Pracodawca zbiera zgłoszenia przez swój system. Przejdziesz na jego formularz.

Klikając w przycisk „Aplikuj” potwierdzasz, że zapoznałeś(-łaś) się i akceptujesz Regulamin serwisu.

Grupa Pracuj S.A. jest administratorem Twoich danych dla celów świadczenia Ci usług w the:protocol oraz w celach analitycznych i marketingowych. Jeżeli masz pytania lub chcesz skorzystać ze swoich praw (dostępu do danych, ich sprostowania, usunięcia, ograniczenia przetwarzania, przeniesienia, sprzeciwu lub skargi do PUODO), skontaktuj się z nami: [email protected] lub z naszym inspektorem ochrony danych: [email protected]. Więcej informacji w Polityce Prywatności.

Need more information?

You can ask the recruiter a casual question. You will receive a reply within three business days.

Check first if the answer to your question is not already in the body of the offer.
An employer may not respond to your question, particularly if there are less than 3 business days remaining before the offer ends.