Asana acquires StackAI — now every human-agent workflow runs in one place.Learn more

Engineering Manager, Threat Response

Warsaw

Apply

At Asana, security is foundational to our mission of helping humanity thrive by enabling the world's teams to work together effortlessly. Our security team protects Asana's employees, users, and customers by proactively addressing threats and fostering a culture of security throughout our product and operations. We are looking for a Manager of Threat Response to lead and grow our team of Security Threat Response Engineers in Warsaw. This is a player-manager role for a deeply technical security professional who is as comfortable handling a complex incident investigation as they are building the processes, people, and partnerships that make world-class incident response sustainable at scale. You will own the strategy and execution of Asana's Security Incident Response programme, drive the maturity of our detection and response capabilities, and establish a hybrid layered SOC model in partnership with a Managed Security Service Provider (MSSP).

This role is based in our Warsaw office with an office-centric hybrid schedule. The standard in-office days are Monday, Tuesday, and Thursday. Most Asanas have the option to work from home on Wednesdays. Working from home on Fridays depends on the type of work you do, and your recruiter can share more about the in-office requirements.
We offer a Contract of Employment (UoP) for our employees in Poland.

What you’ll achieve

  • Team Leadership & People Management: Lead, manage, and grow a team of Security Threat Response Engineers, providing technical direction, regular 1:1 coaching, performance management, and career development support.
  • Talent Acquisition: Hire and onboard exceptional security talent, building a team with complementary skills across incident response, detection engineering, and threat intelligence.
  • Culture & Operations: Create a high-trust, high-performance team culture grounded in continuous learning and psychological safety while defining and managing on-call/stand-by schedules sustainably.
  • Incident Response Leadership: Own and continuously mature Asana's Security Incident Response programme (strategy, policies, playbooks, runbooks); act as an escalation point and provide hands-on technical leadership during high-severity incidents.
  • Program Testing & Metrics: Drive a structured programme of tabletop exercises and simulated incident scenarios; define and track metrics such as MTTD and MTTR to report regularly to senior leadership.
  • Threat Capabilities: Leverage CTI, MISP, OpenCTI, STIX/TAXII, or ISACs for threat-informed detection, threat hunting, and utilize Priority Intelligence Requirements (PIRs) to support major incidents.
  • Hybrid SOC Architecture: Design, implement, and govern a hybrid, layered SOC operating model combining Asana’s internal team with an external Managed Security Service Provider (MSSP) to ensure seamless 24/7 coverage and SLA compliance.
  • Detection & Tooling Optimization: Oversee the optimization of core security platforms like Panther (SIEM) and CrowdStrike (EDR) while tuning the detection engineering practice to map against the MITRE ATT&CK framework.
  • Vulnerability & Automation: Manage and mature the risk-prioritized vulnerability management programme and champion the adoption of orchestration (SOAR) and automation tools to reduce manual toil.
  • Cross-Functional Collaboration & Compliance: Partner with internal infrastructure, IT, and Group Tech Leads to align operations with organizational security roadmaps while ensuring alignment with frameworks like SOC 2, ISO 27001, NIST CSF, and FedRAMP environments.

About you

  • 7+ years of experience in security operations, incident response, or threat detection, including at least 2 years in a formal people management or team lead role within a security function.
  • Deep, hands-on technical expertise managing complex security incidents end-to-end, with the ability to perform forensic analysis in complex environments.
  • Strong experience utilizing SIEM platforms (e.g., Panther, Splunk, Elastic Security) for log analysis, alert correlation, detection development, and dashboard creation.
  • Deep working knowledge of EDR tools (e.g., CrowdStrike, SentinelOne) for detection, response, and threat hunting across enterprise platforms, including macOS environments.
  • Production experience developing and implementing security automation using scripting languages (e.g. Python, PowerShell) or SOAR orchestration platforms.
  • Strong familiarity with common adversary tactics, techniques, and procedures (TTPs) and frameworks such as MITRE ATT&CK, with hands-on exposure to cloud environments like AWS (CloudTrail, GuardDuty, Security
    Hub, IAM forensics).
  • Demonstrated experience designing or maturing an Incident Response programme, as well as setting up or governing external MSSP partnerships and hybrid SOC tiers.
  • Working knowledge of relevant security compliance standards and frameworks, such as NIST CSF, ISO 27001, SOC 2, and FedRAMP reporting timelines or evidence requirements.
  • Excellent communication and leadership skills, capable of translating technical incident details into clear executive summaries while maintaining a collaborative, empathetic, and calm approach under pressure.
  • Flexibility to support periodic stand-by duties and manage out-of-hours escalations, with an understanding of operational demand balances.
  • Demonstrates curiosity about AI tools and emerging technologies, with a willingness to learn and leverage them to enhance productivity, collaboration, or decision-making.

At Asana, we're committed to building teams that include a variety of backgrounds, perspectives, and skills, as this is critical to helping us achieve our mission. If you're interested in this role and don't meet every listed requirement, we still encourage you to apply.

What we’ll offer

  • Generous, transparent and fair compensation system (base salary and RSUs).
  • Contract of Employment (and the option of 50% tax deductible costs for author’s rights usage in respect of applicable roles).
  • Health insurance with dental and travel coverage (Lux Med).
  • Breakfast and lunch catering on the days that you work from the office.
  • Vacation allowance.
  • Career growth budget.
  • Home office setup budget.
  • Gym/Fitness card.
  • Fertility healthcare and family-forming support with Carrot.
  • Mental Health Support in Modern Health.
  • Group life insurance.
  • MacBooks with all necessary accessories.

For this role, the estimated base salary range is between 35,000 – 45,000 PLN gross per month (subject to all taxes and necessary deductions). The actual base salary will vary based on various factors, including market and individual qualifications objectively assessed during the interview process. The listed range above is a guideline, and the base salary range for this role may be modified. In addition to base salary, your compensation package may include additional components such as equity and sales incentive pay (for most sales roles), and benefits. If you're interviewing for this role, speak with your recruiter to learn more about the total compensation and benefits for this role.

#LI-Hybrid

About us

Asana is a leading platform for human + AI collaboration. Millions of teams around the world rely on Asana to achieve their most important goals, faster. Asana has been named to Fortune's Best Workplaces for 7+ years and recognized by Fast Company, Forbes, and Gartner for excellence in workplace culture and innovation. We offer an exceptional office-centric culture while adopting the best elements of hybrid models to ensure that every one of our global team members can work together effortlessly. With 13+ offices all over the world, we are always looking for individuals who care about building technology that drives positive change in the world and a culture where everyone feels that they belong.

Join Asana’s Talent Network to stay up to date on job opportunities and life at Asana.

By clicking "Submit Application," you acknowledge and agree to Asana's Global Job Applicant Privacy Notice.

Fortune Best Workplaces in Technology 2024
Why Asana?

Asana is a leading work management platform for human + AI collaboration. Over 170,000 customers like Accenture, Amazon, Anthropic, and Suzuki rely on Asana to align teams and accelerate organizational impact. Whether it’s managing strategic initiatives, cross-functional programs, or company-wide goals, Asana helps organizations bring clarity to complexity—turning plans into action with AI working alongside teams every step of the way. We believe investing in our culture and our employees is what fuels our individual and collective growth, allowing us to achieve our mission. Asana is an equal opportunity employer, and building a diverse, equitable, and inclusive company is core to our mission. Join us to make a big impact—on our mission, our customers’ missions, and your career.

Can’t find the right role at Asana today? Join Asana’s Talent Network to stay up to date on job openings.