Security Engineer

BAT is evolving at pace into a global multi-category business. Our purpose is to create A Better Tomorrow™ by Building a Smokeless World.
To achieve our ambition, we are looking for colleagues who are ready to join us on this journey! Tomorrow can’t wait, let’s shape it together!

We're looking for a skilled Security Operations and SIEM and SOAR Engineer to build and improve our threat detection capabilities. You'll be hands-on, designing and implementing advanced detection rules and playbooks using SIEM, SOAR, EDR and other security platforms. You'll work with log ingestion, data management, and threat intelligence to proactively identify and respond to security threats.

Your key responsibilities will include:

SIEM & SOAR Management and Optimization

• Maintaining and tuning SIEM platform to ensure optimal performance and accuracy
• Managing log ingestion, parsing, and normalization from various sources
• Developing and implementing custom SIEM correlation rules and alerts

Detection Engineering

• Designing and implementing threat detection use cases using various security tools (SIEM, EDR, SOAR)
• Creating and maintaining automated response playbooks
• Applying threat intelligence to enhance detection capabilities
• Using frameworks like MITRE ATT&CK to ensure adequate coverage
• Conducting attack simulations and participating in purple teaming exercises
• Monitoring security alerts and events to identify potential threats

Security Operations Platforms & Tool Management

• Maintaining and optimizing various security tools, including EDR, SOAR, SIEM, Microsoft Defender suite, etc.
• Ensuring proper integration of security tools

Incident Response Support

• Developing and implementing detection use cases for incident response
• Contributing to post-incident analysis and process improvement
  

What are we looking for?

• A university degree or 3+ years of relevant experience is required.

• Advanced security certifications (e.g., SANS, CISSP, CISM, CISA)
• Experience with cloud security (e.g., AWS, Azure) and Knowledge of machine learning and artificial intelligence applications in security
• Threat Detection & Response: Develop and refine custom detection rules and automated response playbooks to enhance security operations.
• MITRE ATT&CK & Detection Coverage: Use the MITRE ATT&CK framework to assess, improve, and expand detection capabilities.
• SIEM Management & Optimization: Monitor, manage, and optimize SIEM and other detection systems for performance, scalability, and log ingestion.
• Threat Intelligence & Automation: Integrate threat intelligence into security strategies and automate detection workflows for efficiency.
• Compliance & Documentation: Ensure consistency to security standards while maintaining operational documentation and tuning detection capabilities.

What we offer you?
•    We offer a market leading annual performance bonus (subject to eligibility)
•    Our range of benefits varies by country and includes diverse health plans, initiatives for work-life balance, transportation support, and a flexible holiday plan with additional incentives
•    Your journey with us isn't limited by boundaries; it's propelled by your aspirations. Join us at BAT and become a part of an environment that thrives on internal advancement, where your career progression isn't just a statement – it's a reality we're eager to build together. Seize the opportunity and own your development; your next chapter starts here.
•    You'll have access to online learning platforms and personalized growth programs to nurture your leadership skills
•    We prioritise continuous improvement within a transformative environment, preparing for ongoing changes

WHY JOIN BAT?
We’re one of the few companies named as a Global Top Employer by the Top Employers Institute – certified in offering excellent employee conditions.

Collaboration, inclusion and partnership underpin everything we do here at BAT. We are looking forward to enabling every individual to thrive, regardless of gender, sexual orientation, marital or civil partnership status, gender reassignment, race, religion or belief, colour, nationality, ethnic or national origin, disability, age, skills, experience, education, socio-economic and professional background, veteran status, perspectives and thinking styles. We know that embracing talent from all backgrounds is what makes us stronger and best prepared to meet our business goals.

We see the career breaks as opportunities not obstacles. Through The Global Returners program, we support professionals looking to restart their careers after an extended absence from the workforce (e.g. time out caring for family, parental leave, national service, sabbatical and/or starting an own venture).

Come bring your difference and see what is possible for you at BAT. Learn more about our culture and our award winning employee experience here.

If you require any reasonable adjustments or accommodations to help you perform at your best during the recruitment process, you are encouraged to notify us. We are fully committed to support you by making appropriate arrangements for you to demonstrate your full potential.