-
ECO3

Cybersecurity Operations Lead

ECO3
Poland · Full-time · Mid-Senior

About Us:

At ECO3, we're more than just a company - we're a community of innovators and problem-solvers. As a leading global supplier of prepress systems to the printing industry, we provide integrated solutions that boost productivity, cut costs, and promote sustainability. Our European Shared Service Center (ESSC) in Warsaw is a vibrant and inclusive workplace where creativity and collaboration are at the heart of everything we do. We believe in fostering a supportive environment that encourages professional growth and celebrates diversity.


About the role

We are looking for a Cybersecurity Operations Lead to strengthen and mature our operational cybersecurity capabilities in a complex enterprise and industrial environment.

You will work closely with the CISO and act as the key operational counterpart for external security providers and internal stakeholders. The role combines technical oversight, operational coordination, supplier governance, and cybersecurity process improvement.

A strong engineering-oriented background is essential. You must be comfortable working directly with security platforms, validating activities performed by external providers, and independently assessing technical findings, operational risks, and remediation priorities.

This is not a pure SOC role and not a compliance-focused position. The role also supports the gradual increase of internal operational ownership of cybersecurity services.


Your responsibilities

Security Operations & Microsoft Security Platform oversight

  • Supervise and monitor cybersecurity services delivered by MSPs and MSSPs
  • Act as the primary internal counterpart for operational follow-up, service quality validation, and escalation
  • Ensure clear ownership and follow-up of security tasks across MSP, MSSP, and internal teams, escalating where needed
  • Provide operational oversight of Microsoft security technologies, including the Microsoft Defender stack and Microsoft Sentinel
  • Review and validate alerts, findings, exclusions, and operational recommendations
  • Work directly within security platforms to validate activities and investigate findings when needed
  • Support policy tuning, remediation follow-up, and operational improvements
  • Review, question, and challenge recommendations and prioritization decisions from external providers
  • Support tracking of service performance (e.g., SLAs, KPIs) and escalate deviations
  • In case of a security incident, monitor execution of response actions across providers and internal teams, ensuring timely completion


Vulnerability Management

  • Contribute to and help structure the organization’s vulnerability management capability, ensuring it is actionable and consistently followed
  • Help validate scope and coverage of vulnerability management across assets (e.g., endpoints, servers, cloud, factory systems)
  • Participate in the evaluation and selection of vulnerability management tooling and/or providers
  • Validate vulnerability findings, triage results, and remediation recommendations
  • Coordinate and drive vulnerability remediation activities across infrastructure, application, and engineering teams, ensuring risk-based prioritization, tracking of remediation actions, consistent follow-up to closure
  • Help ensure visibility on vulnerability status, remediation progress, and asset coverage


Operational maturity & Cross-functional execution

  • Improve operational processes, documentation, and standardization
  • Support increasing internal ownership of cybersecurity operations, gradually reducing reliance on external providers
  • Coordinate with MSPs, MSSPs, and internal teams (infrastructure, factory engineering, software teams etc.)
  • Contribute to improving visibility, accountability, and operational follow-up across cybersecurity activities
  • Provide hands-on technical support during audits by validating control implementation, evidence, and operational effectiveness


Your profile

  • 5+ years of experience in cybersecurity engineering, security operations, or similar roles
  • Strong technical background in enterprise security operations
  • Experience with Microsoft security technologies in enterprise environments
  • Good understanding of vulnerability management and remediation coordination
  • Experience working with MSPs, MSSPs
  • Comfortable reviewing technical findings, asking questions, and challenging assumptions where needed
  • Strong stakeholder management and communication skills
  • Pragmatic, structured, and solution-oriented mindset
  • Experience in industrial, manufacturing, hybrid IT/OT environments is a plus


What we offer

  • A high-impact role with visible influence on cybersecurity maturity
  • The opportunity to shape and improve operational cybersecurity capabilities
  • A lean and pragmatic operating model
  • Exposure to Microsoft security technologies and industrial environments
  • Collaboration with specialized external providers and stakeholders
  • Extra benefits, including PPE & MyBenefit platform.

Key Skills

Ranked by relevance

cybersecurity microsoft defender cloud
Login to Apply
Posted
Jul 07, 2026
Type
Full-time
Level
Mid-Senior
Location
Warsaw Metropolitan Area
Company
ECO3

Industries

Computer Network Security

Categories

Information Technology

Related Jobs

3 roles aligned with this opportunity

View all jobs
View Job Details
UpcoMinds
Related

Cyber Security Specialist (1575)

2026-07-07

Full-time
Mid-Senior
Poland
IT Services
Information Technology
View Job Details
aizoOn Technology Consulting
Related

Cybersecurity Specialist - AI & Connected Vehicle (Rif. 2026-219)

2026-07-07

Full-time
Mid-Senior
Italy
IT Services
Analyst
View Job Details
Hoxhunt
Related

Technical Support Engineer (French-speaking)

2026-07-07

Full-time
Not Applicable
Finland
Computer
Information Technology