The Cybersecurity Detect and Response Regular Specialist is responsible for support threat monitoring, detection, event analysis, and incident reporting. Responsible for monitoring systems, detecting events, and reporting on all threats that are directed against those systems regardless of their classification level or type. Response on security incident processing from end-to-end. Threat hunting, searching for latest security threats, breaches providing input for analyses of current situation. Will be responsible for addressing vulnerabilities in accordance with the companys Vulnerability Management policy. Developing KPI’s and metrics in VM. Collaborate with IT teams and business across organization.
responsibilities :
Administering SIEM / SOAR solution
Automate processes in cybersecurity area – Azure Sentinel, MDE
Monitoring, analysis, addressing security incidents in EDR/AV/AM
Investigate cybersecurity incidents
Supporting Vulnerability Management process
Developing reports, KPI and dashboards
Understanding and executing cybersecurity processes
Scripting in PowerShell and python
Supporting M365 / Azure environment on security level
Creating Problems, Incidents Tasks in Service Now ITSM
requirements-expected :
Bachelor’s degree or equivalent years of experience in information technology or related discipline
Must be able to communicate in English – both written and verbal
ITIL Foundations certified and working knowledge of ITIL processes
Microsoft Azure certifications will be additional advantage
Understanding the best practice coming from controls frameworks and leading practices
4 years of experience working in Information Technology
Good knowledge about SIEM/SOAR solutions.
Scripting in PowerShell and Python
Knowledge of Cybersecurity frameworks MITRE ATT&CK
Good knowledge of Microsoft Endpoint/ Server OS
Good knowledge of Vulnerability Management
Good knowledge of Azure / Sentinel / Defender for Endpoints
Knowledge of EDR/AV/AM solutions.
Good knowledge of Linux/Unix systems
Good knowledge of OT infrastructure
offered :
Private medical care;
Life insurance;
Remote work opportunities;
Flexible working time;
Integration events.
benefits :
private medical care
life insurance
remote work opportunities
corporate products and services at discounted prices