Senior Solutions Engineer

ABOUT GROUP-IB:

Founded in 2003 and headquartered in Singapore, Group-IB is a leading creator of cybersecurity

technologies to investigate, prevent, and fight digital crime. Combating cybercrime is in the company’s DNA, shaping its technological capabilities to defend businesses, and citizens, and support law enforcement operations.

Group-IB’s Digital Crime Resistance Centers (DCRCs) are located in the Middle East, Europe, Central Asia, and Asia-Pacific to help critically analyze and promptly mitigate regional and country-specific threats. These mission-critical units help Group-IB strengthen its contribution to global cybercrime prevention and continually expand its threat-hunting capabilities.

ABOUT THE ROLE:

This role combines cybersecurity and engineering expertise to design and optimize integrations between Group-IB’s solutions (TI, ASM, DRP) and platforms like SIEM, SOAR, TIP, NGFW, and cloud services, turning threat data into actionable defense. You will work with internal teams and customers to build workflows, improve integrations, and shape product capabilities. If you thrive where strategy meets hands-on execution and want your architecture to meaningfully strengthen security teams, this role is for you.

Main responsibilities:

• Deploy, configure, and consult* customers on TI/TIP, SOAR, and SIEM apps/add-ons — both internally and on the customer side — across TI, DRP, and ASM use cases
• Support integration and troubleshooting processes* for customer environments involving CTI feeds, enrichment pipelines, and incident response automation
• Advise customers on preferred workflows*, including actionable recommendations for SOAR playbooks and alert enrichment flows
• Maintain internal and external knowledge base* with working examples, implementation patterns, and common troubleshooting steps
• Influence product and API integration roadmaps* through structured feedback from field experience and customer cases
• Contribute to new integration app designs*, focusing on scalable architecture, data normalization logic, and platform interoperability

We are looking for someone who:

  •  3–6 years of cybersecurity experience, with a focus on TI/TIP, SIEM, SOAR, XDR
  •  Strong knowledge of CTI standards: STIX/TAXII, MITRE ATT&CK
  •  Hands-on experience with:
  •  SIEM (IBM QRadar, Splunk Enterprise Security)
  •  SOAR (Cortex XSOAR, Splunk SOAR)
  •  TI platforms (MISP, OpenCTI, Anomali, ThreatConnect, EclecticIQ)
  •  Basic Python skills: able to write and debug scripts
  •  Networking knowledge at CCNA level (DNS, DHCP, IP, OSI, SSL, VPN, VLAN, etc.)
  •  Linux fundamentals: CLI, file systems, logs, services, system-level debugging
  •  Experience designing integration workflows: enrichment, scoring, deduplication, playbook triggers
  •  Strong troubleshooting ability: feed ingestion, API authentication, log parsing, and integration issues
  •  Experience with Docker and Kubernetes: deploying, configuring, and debugging containerized CTI components
  •  Excellent communication and documentation skills: working with clients, writers, and integration teams
  •  English: C1 level

What else we appreciate in our team:

• Experience with Elastic Stack, Grafana, Microsoft Sentinel, Splunk Cloud, AWS, Azzure, GCP

• Familiarity with Git, CI/CD pipelines

• Knowledge of threat scoring logic and custom IOC handling

• Experience in customer-facing roles or technical pre-sales support

OUR WORK ENVIRONMENT & CULTURE:

At Group-IB, we believe that employee happiness is fundamental to success. We foster a supportive, inclusive, and dynamic workplace where every team member is empowered to grow. Whether you’re aiming to deepen your expertise, step into leadership, explore new departments, or take your career abroad, we provide diverse opportunities for professional development.

Our team is made up of specialists from around the world who bring deep international expertise and thrive on solving complex challenges. You’ll be working with cutting-edge technologies recognized globally by Gartner, IDC, and Forrester, and contributing to projects that span across 60 countries alongside 450+ partners and 500+ clients.

We take pride in our multicultural, values-driven culture—where mutual respect, collaboration, and shared goals unite us across borders. And with Group-IB’s continued global growth and financial stability, your career trajectory here can accelerate faster than in most traditional environments.

WHAT DO WE OFFER:

• Flexible Work Schedule
• We don’t believe in fixed hours—what matters is impact, not time spent. You have the freedom to design your own workday in a way that drives results and balance.
• Comprehensive Health Coverage
• Your well-being comes first. We offer health insurance to support you when it matters most.
• Certifications & Continuous Learning
• Our team holds over 1,000 globally recognized certifications, including CEH, CISSP, OSCP, and more. Through our incentive program, we cover the cost of professional development—because your growth fuels our innovation.
• Meaningful Challenges & Growth Paths
• From soft skills development to advanced technical training, a wide range of internal programs help you expand your skill set—and earn recognition and rewards along the way.
• Entrepreneurial spirit is encouraged
• We value initiative. Whether it’s launching a tech blog, organizing events, building communities, or starting a sports team—Group-IB is a place where bold ideas are supported and celebrated.