Informacje o stanowisku

technologies-expected :

• Application Security Risks
• SQL
• Web security

• CCNA
• CompTIASecurity+

• Local, regional and global remit
• Context within cyber security architecture and risk management frameworks

• Perform security event analysis as part of the daily responsibilities
• Take part in the incident response activities within the region
• Support the web, network and email security solutions during the EMEA shift
• Become an expert in managing security technologies and participate in incident response process
• Help structure the analysis model and incident response process
• Monitoring and effective analysis of security events to identify anomalous activities and potential threats to organization resources
• Continuous, active monitoring of global systems and cyber defense tools to identify incidents
• Monitoring security alerts from web security platforms and managing user‑reported issues caused by web security controls
• Supporting the maintenance of the cybersecurity technology stack in this domain
• Documenting and escalating incidents that may cause ongoing and immediate impact to the environment
• Coordinating incident response functions and providing expert technical assistance to resolve incidents
• Supporting best-in-class security technologies and cooperating with technology vendors
• Contributing to vulnerability management activities, including cooperation with stakeholders to resolve vulnerability compliance issues
• Participating in SOC process improvement initiatives
• Assessing adequate access controls based on principles of least privilege and need-to-know
• Providing technical summary of findings in accordance with established reporting procedures

• Bachelor’s degree required; Master’s degree desired
• Experience in security event analysis
• Good knowledge of IT security controls
• Knowledge of Application Security Risks (e.g. Open Web Application Security Project Top 10 list) and exploitation techniques
• Web security knowledge (e.g. web protocols, authentication and session management mechanisms)
• Knowledge of the basics of network security (e.g., encryption, firewalls, proxies, authentication, honey pots, perimeter protection)
• Knowledge of authentication, authorization, and access control methods
• Knowledge of cyber defence and vulnerability assessment tools and their capabilities
• Knowledge of cyber-attack stages (e.g., reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks)
• Knowledge of incident response and handling methodologies
• Knowledge of cybersecurity and privacy principles
• Skill in collecting data from a variety of cyber defence resources
• Skill in using incident handling methodologies
• Skill in recognising and categorizing types of vulnerabilities and associated attacks
• Ability to apply techniques for detecting host and network-based intrusions using intrusion detection technologies
• Ability to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation)

• Access to best-in-class security training platform
• Eligibility for security certification on a regular basis
• Support hours: 40 hours (9-17) / 5 days per week
• Medicover
• Multisport

• dofinansowanie zajęć sportowych
• prywatna opieka medyczna
• dofinansowanie szkoleń i kursów
• dofinansowanie wypoczynku

Warszawa - Oferty pracy w okolicznych lokalizacjach