For Digital Hub Warsaw, We Are Looking For
Sr. Cyber Security Architect (Purple Team Specialist)
As a Sr. Cyber Security Architect (Purple Team Specialist), you will bridge the gap between the offensive (red) and defensive (blue) teams, coordinating security exercises and enhancing the organization's detection and response capabilities. You will work to ensure that red team findings are leveraged by the blue team to improve threat detection and mitigation strategies, enabling the organization to better identify, respond to, and mitigate security threats.
Additionally, this role is responsible for managing, operating, and maintaining the controls that protect Bayer’s computer networks, systems and data from cyberattacks. They work closely with IT teams to identify, assess and mitigate security risks, and they work with ITSM to ensure operational continuity and with cyber incident response to contain the damage from security incidents and prevent future attacks.
Key Tasks & Responsibilities
- Purple Team Exercises: Lead collaborative exercises, such as attack simulations and threat emulation, to improve the synergy between offensive and defensive security measures.
- Detection Gap Analysis: Identify detection gaps during exercises and work with the blue team to refine alerting mechanisms and defensive controls.
- Documentation & Frameworks: Establish a set of best practices for purple teaming, aligning efforts with industry frameworks like MITRE ATT&CK to ensure comprehensive detection coverage.
- Training & Knowledge Sharing: Facilitate knowledge transfer sessions, helping the blue team understand and respond to common attack vectors and techniques.
- Designs, Implements, and Operates cybersecurity solutions for Bayer’s systems and products in compliance with Bayer’s applicable security policies and standards.
- Works with IT and internal and external business partners to ensure that security is factored in the evaluation, selection, installation, and configuration process of hardware and software.
- Maintains operational efficiency, performance, and reliability of security systems; integrating into IT service management and incident response processes.
- Analyzes and makes recommendations to improve network, system, and application architectures.
- Assists in the review and update of cybersecurity policies, architectures, and standards.
- Assists in responding to audits, penetration tests, and vulnerability assessments.
- Designs and implements secure infrastructure solutions, including network security, configuration management, storage security, and identity and access management (IAM) based on security policies to prevent unauthorized access.
- Conducts regular security assessments to identify vulnerabilities and potential risks.
- Aligns with Cyber Security Architects on ensuring security architecture standards, guidelines, and best practices are implemented into technology.
Qualifications
Qualifications & Competencies (education, skills, experience):
- 5+ years in security, with strong knowledge of offensive and defensive methodologies.
- Familiarity with SIEM, threat detection tools, and MITRE ATT&CK framework.
- Certifications like CPTC, GDAT, or MITRE ATT&CK Threat Hunter are preferred.
What Do We Offer
- A flexible, hybrid work model
- Great workplace in a new modern office in Warsaw
- Career development, 360° Feedback & Mentoring programme
- Wide access to professional development tools, trainings, & conferences
- Company Bonus & Reward Structure
- VIP Medical Care Package (including Dental & Mental health)
- Holiday allowance (“Wczasy pod gruszą”)
- Life & Travel Insurance
- Pension plan
- Co-financed sport card - FitProfit
- Meals Subsidy in Office
- Additional days off
- Budget for Home Office Setup & Maintenance
- Dedicated working Zone with state-of-the art Lab available only for Cyber Security Team
- Access to Company Game Room equipped with table tennis, soccer table, Sony PlayStation 5 and Xbox Series X consoles setup with premium game passes, and massage chairs
- Tailored-made support in relocation to Warsaw when needed
- Please send your CV in English
You feel you do not meet all criteria we are looking for? That doesn’t mean you aren’t the right fit for the role. Apply with confidence, we value potential over perfection
WORK LOCATION: WARSAW AL.JEROZOLIMSKIE 158
YOUR APPLICATION
Bayer welcomes applications from all individuals, regardless of race, national origin, gender, age, physical characteristics, social origin, disability, union membership, religion, family status, pregnancy, sexual orientation, gender identity, gender expression or any unlawful criterion under applicable law. We are committed to treating all applicants fairly and avoiding discrimination.
Bayer is committed to providing access and reasonable accommodations in its application process for individuals with disabilities and encourages applicants with disabilities to request any needed accommodation(s) using the contact information below.
Bayer offers the possibility of working in a hybrid model. We know how important work-life balance is, so our employees can work from home, from the office or combine both work environments. The possibilities of using the hybrid model are each time discussed with the manager.
Bayer respects and applies the Whistleblower Act in Poland.
Location: Poland : Mazowieckie : Warszawa
Division: CSRM
Reference Code: 837341
Location:
Poland : Mazowieckie : Warszawa
Division
CSRM
Reference Code
837341
