Informacje o stanowisku

Cyber Security Monitoring Specialist Poland

Nordea is a leading Nordic universal bank – we are a strong and personal financial partner with financial solutions that best meet your needs so you can achieve your goals and realise your dreams.

Welcome to the Cyber Security Monitoring team. We add value to Nordea by monitoring and responding to IT security incidents and protecting our customers. As Cyber Security Monitoring Specialist, you will play a valuable role in Cyber Security Operations Center.

What you’ll be doing:

• Working with security infrastructure solutions and systems, protecting the business applications
• Monitoring security threats against Nordea and initiating proper security measures to mitigate such threats
• Supporting with IT security related incident handling and computer forensics investigations
• Interfacing towards internal stakeholders in business and IT and external suppliers mainly on a technical level

Who you are:

Collaboration. Ownership. Passion. Courage. These are the values that guide us in being at our best – and that we imagine you share with us.

To succeed in this role, we believe that you are experienced in:

• Real-time monitoring of security infrastructure components and alerts. Triage of security alerts. Supporting tier 2 security incident respondents
• Escalating unresolved problems to a higher level of support including incident response
• Improving correlation rules to ensure that the monitoring policy allows for efficient detection of potential incidents
• Defining dashboards and reports for reporting on KPIs
• Contributing to the design of the overall monitoring architecture in close relationship with system owners
• Producing and maintaining accurate and up-to-date technical documentation, including processes and procedures related to security alerts and incidents
• Explaining complex technical concepts to non-technical people

Your experience and background:

• Strong knowledge of security technologies such as SIEM, SOAR, EDR, Firewalls, Proxy, IDS/IPS and Endpoint protection
• Experience in log analysis, alert and incident handling
• Proficiency in working with Windows & Unix/Linux operating systems
• Solid understanding of MITRE ATT&CK framework
• Solid understanding of the cyber kill-chain
• Well-developed soft skills in terms of team building and organization
• Fluent knowledge of technical English, B2
• Practical experience with Splunk (would be considered as an advantage)
• Practical experience in Python scripting (would be considered as an advantage).

Certifications:

• GIAC, CEH, Comptia Sec+ (would be considered as an advantage)

What we offer:

• We offer a full-time employment agreement with various benefits based on your location, which may include private health and life insurance, learning opportunities, holiday subsidies, bonuses and many more
• We treasure flexibility. That’s why we offer a hybrid working model, where you can experience both working from our offices and from home. 4 days from home, 1 day from the office

About us:

We are Nordea. We have a 200-year history of supporting and growing the Nordic economies and our values are deeply rooted in these open, progressive and collaborative societies. As one of the biggest employers in the Nordics, Poland and Estonia, you have excellent opportunities to evolve, develop and move forward with us.

If this sounds like you, get in touch!

Next steps:

Submit your application no later than 24/11/2024.

At Nordea, we know that an inclusive workplace is a sustainable workplace. We deeply believe that our diverse backgrounds, experiences, characteristics and traits make us better at serving customers and communities. So please come as you are.

Gdynia - Oferty pracy w okolicznych lokalizacjach