Senior Security Engineer at farfetch

Farfetch is a leading global marketplace for the luxury fashion industry. The Farfetch Marketplace connects customers in over 190 countries and territories with items from more than 50 countries and over 1,400 of the world’s best brands, boutiques, and department stores, delivering a truly unique shopping experience and access to the most extensive selection of luxury on a global marketplace.   TECHNOLOGY We're on a mission to build end-to-end products and technology that powers the an incredible e-commerce experience for luxury customers everywhere, understanding the motivations and needs of our customers and partners, to designing and testing hypotheses, to creating industry-leading experiences for luxury customers.   PORTO Our office is near Porto, in the north of Portugal, and is located in a vibrant business hub. It offers a dynamic and welcoming environment where our employees can connect and network with a large community of tech professionals.   THE ROLE As the regional lead for our Detection, Analysis, and Response Team (DART) in Portugal, you will serve as the "special forces" commander for our security organization. You will lead a high-caliber team of incident responders, maintaining a calm and collected demeanor during high-pressure situations while thinking critically as both an attacker and a defender. This position is uniquely based at the Farfetch office in Porto, where you will split your leadership and technical expertise between Coupang Corp and Farfetch. You are responsible for overseeing the detection and neutralization of credible threats, developing advanced detective capabilities, and fostering a culture of relentless problem-solving within the regional unit. WHAT YOU'LL DO • Lead the analysis and response to security anomalies, intrusion attempts, and breaches; perform root-cause analysis, containment, and comprehensive post-incident reporting. • Conduct advanced threat hunting to identify undetected threats using data from endpoints, servers, cloud environments, and network traffic. • Act as the senior escalation point for the SOC, providing expert analysis on complex security tickets. • Continuously improve incident response policies, playbooks, and SOC operational processes. • Analyze and mitigate web-based security events using CDN security solutions (e.g., Akamai, Cloudflare). • Collaborate effectively with internal engineering and business teams through clear, technical, and executive-level • communication. Participate in an on-call rotation to respond to urgent security incidents or emerging threats. WHO YOU ARE • You have 8+ years in Information Security, with at least 5+ years specifically dedicated to Cyber Security Incident Response (CSIRT) or Digital Forensics. • Experienced in host-based investigations across Windows, Linux, and various network/security appliances. • A professional with hands-on experience analyzing security events within AWS, Azure or other major Cloud environments. • Knowledgeable of analyzing events from EDR, HIPS, DLP, IPS/IDS, and SaaS solutions (e.g., Google Worksapce, O365, Email Security). • Proficient in managing and analyzing logs from Web Security solutions like Akamai or Cloudflare. • Skilled in querying SIEM solutions and analyzing "big data" or high-volume logs to identify patterns of compromise. • Able to automate response workflows and script in Python, Bash, or PowerShell. • Graduate in Computer Science, Cybersecurity, or equivalent practical experience. • Experience operating SIEM platforms and developing custom detection use cases. • Deep understanding of container security and orchestration (Kubernetes, Docker). • Advanced knowledge of network traffic/packet analysis and network forensics. • Relevant industry certifications such as GCIH, GCFA, GNFA, CISSP, or OSCP. REWARDS & BENEFITS • Health insurance for the whole family, flexible working environment and well-being support and tools • Extra days off, sabbatical program and days for you to give back for the community • Training opportunities and free access to Udemy • Flexible benefits program EQUAL OPPORTUNITIES STATEMENT • Farfetch is an equal opportunities employer ensuring that all applicants are treated equally and fairly throughout our recruitment process. We are determined that no applicant experiences discrimination on the basis of sex, race, ethnicity, religion or belief, disability, age, gender identity, ancestry, sexual orientation, veteran status, marriage and civil partnership, pregnancy and maternity, or any other basis prohibited by applicable law. SCAM DISCLAIMER • It has come to our attention that there may be fraudulent activities involving individuals or organizations falsely claiming to represent Farfetch in order to attract candidates to a SCAM. Please be aware that Farfetch does not conduct recruitment processes through messaging apps or any unofficial communication channels, other than our official careers website. Additionally, Farfetch will never ask candidates for any form of payment during the recruitment process.