Senior Engineer, Cyber Defense Center

As a Senior Security Engineer in our Cyber Defense Center (CDC), you will focus your expertise on improving threat intelligence, detection, and automation capabilities to strengthen our defenses against cyberattacks targeting Volvo Group.

Key Responsibilities:

• Threat Detection Engineering: Develop and implement detection logic and rules to identify threats targeting Volvo Group.
• Automation: Automate our operational response activities and contribute to CI/CD, embracing a detection- and automation-as-code philosophy
• Threat Intelligence: Analyze and apply threat intelligence to inform operational workflows and guide security decision-making.
• Security Validation: Planning and execution of breach attack simulations to assess and improve our detection and response capabilities
• Security Technology Expert: Provide expert guidance on security tool configuration, optimization, and integration (XDR, EDR, NDR, network security, IDM, email security). Evaluate and recommend new security technologies.
• Data Platform Architecture: Design and maintain a hybrid data ecosystem (SQL, NoSQL, Graph) to support threat detection and investigations. Optimize data ingestion and processing for efficiency.

Required Skills & Qualifications:

• 7+ years of IT security experience.
• Experience with threat detection and incident response.
• Experience building detection logic using Splunk.
• Experience in threat intelligence analysis.
• Proficiency in programming/scripting (e.g., PowerShell, Python, Bash, JavaScript).
• Proficiency in query languages (Splunk SPL, KQL, SQL).
• Knowledge of SQL, NoSQL, and Graph databases.
• Hands-on experience with security tools (XDR, EDR, NDR, IDM, email security).
• Strong analytical and problem-solving skills.
• Strong communication skills

Preferred Qualifications:

• Background in Security Operations Center, Software Development, and/or Software Architecture
• Familiarity with DevSecOps and CI/CD
• Understanding of OT security principles