Apply now »

Senior IT Security Engineer


Poznań, PL

Req ID:  78318
Facility:  POZNAN-6731
Department:  Security Foundations
Division:  Global Business Services

LyondellBasell (NYSE: LYB) is one of the largest plastics, chemicals and refining companies in the world. Driven by its employees around the globe, LyondellBasell produces materials and products that are key to advancing solutions to modern challenges like enhancing food safety through lightweight and flexible packaging, protecting the purity of water supplies through stronger and more versatile pipes, improving the safety, comfort and fuel efficiency of many of the cars and trucks on the road, and ensuring the safe and effective functionality in electronics and appliances. LyondellBasell sells products into more than 100 countries and is the world's largest producer of polypropylene compounds and the largest licensor of polyolefin technologies. In 2022, LyondellBasell was named to Fortune Magazine's list of the "World's Most Admired Companies" for the fifth consecutive year.

Basic Function

This position is part of the Operational Platforms group reporting into the Global Technology Services department. The primary role of this position is to support upcoming project work by evaluating, installing, implementing, and supporting security applications for the infrastructure group. The position works closely with the other infrastructure groups (networks, perimeter security, and desktop), as well as, the application teams and digital security teams to secure the enterprise and develop, maintain, and advance the security posture of the company.  Managing and enhancing the effectiveness of current security applications including anti-virus, anti-spyware, intrusion prevention, and identity and access applicaitons.  Applying, changing, revoking and periodic review of end user access to all applications (financial & non-financial), file servers, VPN access, Internet, and Active Directory are required.  Managing the implementation of corporate security policies, programs, and procedures to protect information systems’ assets from intentional or inadvertent modification, disclosure or destruction.  Providing reports to management regarding the effectiveness of network and data security, and making recommendations for the adoption of new policies, procedures and technologies as required.  Managing and coordinating compliance for required industry audits.  This position requires a broad range of knowledge across multiple IT disciplines.

Roles & Responsibilities

•    Create system-level security architecture and design which includes definition of technical security controls (e.g., access control, authentication, encryption, deterrence measure, etc) and definition of non-technical security controls (e.g., process and procedure) necessary to achieve the security requirements and remediate audit finding.
•    Overall enterprise responsibility for endpoint protection, including anti-virus, anti-spyware, intrusion prevention, host DLP, and data encryption using McAfee ePolicy Orchestrator and Microsoft Defender for Endpoint/Identity.
•    Maintain and develop two factor authentication infrastructure leveraging RSA Secure ID.
•    Manage Azure AD (SSO Configuration, Application Registration, MFA, etc.) and on-prem Active Directory (GPO, Kerberos/SPN, Domain Controllers, Distributed File System, etc.).
•    MCAS Policy Creation/Modifications.
•    Network Policy Server Support.
•    Oversee the deployment, integration and configuration of all new security solutions, and any enhancements made to existing security solutions, to improve overall enterprise security.
•    Develop and maintain the company’s infrastructure security documents (policies, standards, baselines, guidelines and procedures).
•    Determine appropriate levels of security controls and systems monitoring.
•    Use effective measures to respond to infrastructure security alerts.
•    Understand the latest hacker techniques and propose appropriate countermeasures.
•    Lead and assist in advanced troubleshooting of complex issues that cross multiple domains, applying core knowledge and troubleshooting to lead group to resolution.
•    Manage workstation policies to lockdown end-points without sacrificing user experience.
•    Work with members of the IT staff to realize enterprise approach to security.
•    Perform ticket queue monitoring and prioritization.
•    After-hours / weekend work as required.
•    Assist with IT audits to support

Min. Qualifications

  • 4-year degree (or higher) in Computer Science or MIS and 7-10 years’ infrastructure experience, or 8-12 years infrastructure experience.
  • 10+ experience with Microsoft server technologies
  • 7-10 years in an infrastructure security role
  • 6-8 years Microsoft Active Directory administration and architecture  (including Group Policy creation and use of AD for automated security hardening) .
  • 5-7 experience managing and deploying anti-virus architecture.  Including integration with virtual and highly consolidated systems.
  • 5-7 years’ experience with techniques and tools used to secure/harden a server's operating system and applications running on the server.
  • CISSP or equivalent preferred
  • Experience with patch management systems for Microsoft based systems.
  • Experience with authentication systems including two factor and federated systems.
  • Experience with vulnerability assessment techniques.
  • Experience with T-SQL database scripting and database security concepts.
  • Experience with encryption, cryptography, public key infrastructure (PKI).
  • Experience with highly sensitive systems, such as internet facing servers and process control networks.
  • 2 to 7 years of relevant experience in a multi-platform and networked environment


Builds effective teams
Cultivates innovation
Customer focus
Demonstrates courage
Drives results
Ensures accountability
Instills trust and exemplifies integrity

We Offer

We offer an environment where we encourage personal and professional growth and where you will be rewarded for your performance and results. You will have the possibility to work with specialist on all fields to develop innovative solutions and to extend your national and international network. In addition, we offer you a competitive salary and benefits package.

The Company's Global Remote Work Policy allows eligible employees the option to work up to two days a week from home.

LyondellBasell is committed to advancing diversity, equity & inclusion (DEI) to ensure a positive experience for all employees.

Application & Contact

Please send us your resume via the application button

If you would like to learn more, please feel free to contact Martyna Piechowiak, Talent Acquisition Specialist at 

#LI-MP1  #LI-Hybrid

Apply now »