At Bayer we’re visionaries, driven to solve the world’s toughest challenges and striving for a world where ,Health for all, Hunger for none’ is no longer a dream, but a real possibility. We’re doing it with energy, curiosity and sheer dedication, always learning from unique perspectives of those around us, expanding our thinking, growing our capabilities and redefining ‘impossible’. There are so many reasons to join us. If you’re hungry to build a varied and meaningful career in a community of brilliant and diverse minds to make a real difference, there’s only one choice.
Sr Cyber Security Engineer
At Bayer, we are committed to transparency, equal pay for equal work or work of equal value, and objective reward practices in line with EU and local regulations. The minimum monthly gross compensation for this role is 20 240 PLN, with final pay determined based on objective factors such as experience, qualifications, scope of responsibility, and internal alignment.
This position is eligible for variable pay components, such as performance‑based bonuses, awarded in accordance with the applicable employee group, role scope, and compensation structure.
In addition, Bayer offers a competitive and holistic benefits package, including:
- Medical care above statutory requirements
- Flexible benefits supporting leisure, and well‑being/sports programs
- Life, accident, and disability insurance through group coverage
- Employer‑supported pension plans with regular company contributions
- Home office allowance to support hybrid or remote work
- Extra Paid Holidays
Benefits may vary depending on country, role, and employment conditions.
For Digital Hub Warsaw, we are looking for:
Sr. Cyber Security Engineer
Key Tasks & Responsibilities:
- Lead and optimize the operation, continuous improvement, and global service delivery of OT Intrusion Detection / Network Detection platforms (e.g., Nozomi, Claroty) in a complex, global environment.
- Lead the design and enterprise-wide rollout of OT IDS capabilities, ensuring scalable and timely implementation across manufacturing, laboratory, and other OT sites.
- Provide accurate and up-to-date documentation, processes, and operational runbooks, including high-level design, low-level designs and standard operating procedures.
- Design OT IDS architectures and deployment patterns aligned with OT network segmentation, industrial communication requirements, and site-specific constraints.
- Analyze and ensure platform stability, sensor health, and high availability by proactively maintaining performance baselines and monitoring data quality.
- Monitor platform, sensor, collector, and integration health to identify visibility gaps, onboarding issues, or coverage deficiencies, and initiate corrective actions.
- Steer and perform Incident, Problem, and Change Management, including complex troubleshooting across OT, IT, and hybrid environments.
- Lead feature implementation, proof-of-concept activities, and rollout support for new OT IDS capabilities, integrations, and detection use cases.
- Own security content management for the OT IDS platform, including alert tuning, detection logic optimization, use-case development, policy refinement, and false-positive reduction.
- Coordinate and maintain integrations with adjacent security and operational tools, such as SIEM, CMDB, asset inventory, ticketing, and incident-response platforms.
- Conduct tool and technology life-cycle maintenance, including patching, upgrades, compatibility validation, and end-of-life planning.
- Support and improve automation for deployment, onboarding, health monitoring, reporting, and operational workflows where applicable.
- Provide an effective interface with vendors and service partners for support escalation, product roadmap alignment, and feature adoption.
- Collaborate with cross-functional teams including OT engineering, plant/site operations, network, SOC, infrastructure, and external partners to ensure end-to-end service quality.
- Regularly publish KPIs, operational dashboards, and service metrics to identify opportunities for continuous improvement and stronger OT security visibility.
- Support work-package delivery and sub-project coordination within larger cybersecurity and OT security programs.
- Supported Environments:
- Operational Technology (Manufacturing & R&D)
- Industrial networks and segmented OT environments
- Workplace / End-User Computing interfaces impacting OT visibility
- Public / Private Cloud platforms hosting security tooling or integrations
- Network and connectivity layers relevant for OT monitoring and sensor communication
Qualifications & Competencies (education, skills, experience):
- Strong knowledge and hands-on experience with OT IDS / network monitoring platforms such as Nozomi, Claroty, or similar industrial-security solutions.
- Good understanding of OT environments, including industrial control system architectures, plant networks, Purdue-model concepts, segmentation, and communication patterns.
- Strong understanding of OT and enterprise network technologies, including routing, switching, firewalls, SPAN/TAP concepts, VLANs, and secure remote connectivity.
- Awareness of manufacturing, laboratory, and industrial operational constraints, including availability and safety considerations.
- Experience with design, implementation, rollout, and operations of IDS solutions in large-scale or multi-site environments.
- Strong understanding of security monitoring, alert handling, detection tuning, and security content management.
- Demonstrated ability in complex technical troubleshooting, root-cause analysis, and issue resolution across interdisciplinary teams.
- Strong collaboration skills and ability to work effectively in global, cross-functional teams.
- Strong cybersecurity mindset with familiarity in threat detection, incident response, and risk reduction in OT environments.
- Scripting or automation skills such as Python or PowerShell are a plus.
- Excellent written and verbal communication in English.
- Degree in Computer Science, Engineering, Cybersecurity, or equivalent experience; relevant certifications such as CISSP, GICSP, ISA/IEC 62443, Nozomi certification, or equivalent are advantageous.
- Experience with IT Service Management platforms and understanding of ITIL processes such as Incident, Problem, and Change Management.
WORK LOCATION: WARSAW AL. JEROZOLIMSKIE 158
| YOUR APPLICATION | ||||
|
Bayer welcomes applications from all individuals, regardless of race, national origin, gender, age, physical characteristics, social origin, disability, union membership, religion, family status, pregnancy, sexual orientation, gender identity, gender expression or any unlawful criterion under applicable law. We are committed to treating all applicants fairly and avoiding discrimination. Bayer is committed to providing access and reasonable accommodations in its application process for individuals with disabilities and encourages applicants with disabilities to request any needed accommodation(s) using the contact information below. Bayer offers the possibility of working in a hybrid model. We know how important work-life balance is, so our employees can work from home, from the office or combine both work environments. The possibilities of using the hybrid model are each time discussed with the manager. |
||||
| Location: | Poland : Mazowieckie : Warszawa | |||
| Division: | CSF | |||
| Reference Code: | 872646 | |||
Location:
Poland : Mazowieckie : Warszawa
Division:
CSF
Reference Code:
872646
