Proactively analyze security alerts and identify vulnerabilities across the entire IT/OT and cloud landscape, working closely with the 24/7 SOC to implement effective mitigation strategies.
Collaborate with cross-functional teams to enforce security controls and ensure adherence to best practices.
Develop security monitoring use-cases and automations.
Perform threat hunting and threat intelligence analysis.
Develop and improve IR security procedures.
Conduct in-depth root cause analyses, extract key learnings, and drive remediation efforts to prevent recurrence.
Optimize and maintain security tools including vulnerability management, posture management, SIEM, and XDR/EDR solutions.
Actively participate in security awareness initiatives to foster a culture of security within the organization.
Spearhead regular threat and vulnerability assessments, as well as red and purple team exercises to enhance security posture.
Provide essential operational support, including incident response planning and execution, post-incident analysis, and business continuity management.
Identify process and system improvement opportunities, gathering requirements to enhance IT security practices.
Support the implementation of robust security policies and systems to safeguard the IT environment.
requirements-expected :
Degree in IT/technology, data, business administration, or infrastructure security in a comparable field.
CISSP, CISM, GIAC, CompTIA Security+, or other relevant security-related certifications are appreciated, but not required.
Proficient in English.
Advanced knowledge of infrastructure security, layered security approaches incl. network security measures, endpoint security, and cloud security with a minimum of 5 years of relevant working experience.
Experience in security operations, analyzing security threats / security alerts and responding to security incidents.
Knowledge of threat hunting and experience in analyzing threat intelligence data sources.
Experience in performing security incident analysis and improving the configurations for the following types of technologies: SIEM (eg. Microsoft Sentinel knowledge is a plus), XDR (eg. Microsoft Defender for Endpoint knowledge is a plus), SOAR,
Vulnerability Management.
Experience in implementing SOC security solutions and configuration enhancement (SIEM/EDR/Vulnerability Management/SOAR etc.) is a plus.
Good knowledge of vulnerability testing, incident management, or business continuity management is a plus.
Scripting or programming experience (Python, PowerShell) is beneficial.
Knowledge of security orchestration, automation and response (SOAR) to optimize the day-to-day activities.
Independent and self-driven personality, taking responsibility and owning tasks.
Strong analytical and problem-solving skills.
Ability to interpret business requirements and draw insights.
Excellent written and verbal communication skills, ability to present to diverse audiences.
offered :
Employment on a regular basis in the sweetest company in the world.
Annual bonus based on your work results.
Lunch card to be used for groceries and restaurants.
Private medical care in Lux Med (basic package fully financed by BC).
Fit Profit sports card co-financed by BC.
PPE: we care about your future, and we save money for your retirement.
Cafeteria Program as a part of Social Fund.
Group life insurance.
Hybrid working model: min. 8 days in the office a month.
As part of our work-life balance culture, we can start work between 7 am and 10 am.
Free consultation with a lawyer once a quarter.
Chocolate! Yes, surprising but we have chocolate in the office, for Christmas, BC’s Birthday, and many other occasions during the year.
And if chocolate is still not enough, you can join one of our theme clubs, where together with other employees we develop our passions and interests.
Daily delivery of fresh fruits and veggies to the office.
You can purchase our sweet products with a special discount.
Relax zone in the office and plenty of options to choose from: PlayStation 5, football table, pool table, Ping-Pong, library, table games, and massage chairs.
Sport @work? Sure! We have treadmills and indoor exercise bikes with a laptop station.
We like to party as much as we like chocolate! We have integration budgets we can use for team events.
Forever Chocolate and Event Team: you can join them and have a real influence on social life in BC and CSR activities.
benefits :
sharing the costs of sports activities
private medical care
sharing the costs of foreign language classes
sharing the costs of professional training & courses
