Informacje o stanowisku

The primary responsibilities will be as follows:

• Lead Architect in Security Operations Center,
• Administer key security systems such as SIEM and XDR.
• Define system security requirements and be a technical leader of implementations for new solutions.
• Raise and resolve any architectural issues/risks that could have implications against the cyber security strategy,
• Responsible for continuous improvement of security monitoring by preparing new correlation rules and defining requirements for flows and event collection,
• Leadership in threat hunting activities,
• Realization of Forensic tasks,
• Participation in the vulnerability management process,
• Providing L3 and L4 support to other Team’s members in security related issues.
• Mitigating and resolving serious security incidents.
• Preparing and maintaining documentation and reports.
• Cooperating with other team members to provide comprehensive service.

  MAIN DUTIES AND RESPONSIBILITIES

  The primary responsibilities will be as follows:

  • Lead Architect in Security Operations Center,
  • Administer key security systems such as SIEM and XDR.
  • Define system security requirements and be a technical leader of implementations for new solutions.
  • Raise and resolve any architectural issues/risks that could have implications against the cyber security strategy,
  • Responsible for continuous improvement of security monitoring by preparing new correlation rules and defining requirements for flows and event collection,
  • Leadership in threat hunting activities,
  • Realization of Forensic tasks,
  • Participation in the vulnerability management process,
  • Providing L3 and L4 support to other Team’s members in security related issues.
  • Mitigating and resolving serious security incidents.
  • Preparing and maintaining documentation and reports.
  • Cooperating with other team members to provide comprehensive service.

Must have:

• Experience in security solutions dedicated for Blue Team.
• 3+ years of working experience in SOC/Enterprise Cybersecurity Architect role and overall 8+years of experience in Security operations.
• Strong solution and systems architecture experience Good knowledge of the security technologies including database security, operating system security, cloud security and log management.
• Ability to explain business principles of secure system designs in terms of business risk
• Strong experience of the network security technologies and with network monitoring tools.
• Practical experience on customer service processes and solving issues
• Excellent team work capabilities,
• passion and drive to succeed and combat Cyber threats
• Expert in behavioral analysis tools
• Thorough knowledge of how the systems support Security Monitoring for the Analysts
• Expert in systems integration
• Knowledge of threat Intelligence / feeds platform integration in SOCs
• Awareness and knowledge of Vulnerability Management
• Awareness and knowledge of Cyber Incident Response
• Expert in SOC solutions design and deployment
• Good Experience with the following:
  • SIEM / SOAR or XDR solutions,
  • Advanced RegEx or SQL queries,
  • Microsoft PowerShell or Phyton programming language,
• Communicative English including technical vocabulary.

Nice to have:

• Security certification from industry leaders,
• Experience working for an international organization,
• Experience with system security in OT environment
• Awareness and knowledge on Attack & Penetration Testing / Ethical Hacking

The individual will need to have the following key personal skills and attributes to perform successfully in this role:

• Excellent planning and organizational skills,
• Excellent interpersonal and communication skills,
• Excellent attention to detail,
• A proven ability to work unsupervised,
• Ability to work diligently and under pressure,
• Ability to manage multiple workstreams simultaneously, and;
• A proactive approach and a willingness to work outside the job specification when required.
• An individual approach to a career development in following areas:
  • XDR/SOAR and related automation processes,
  • Threat hunting,
  • Vulnerability management,
  • Forensics,
  • Malware Analysis.

RECRUITMENT SUPERVISORS

SKAWINA - STANOWISKA PRODUKCYJNE
(KANDYDACI SPOZA POLSKI)

Kraków - Oferty pracy w okolicznych lokalizacjach