Project information:

• Location: 100% remote
• Working hours: Night shifts only (system will be agreed with the candidate, there may be 12-hour shifts or 8 hours shifts, depending on candidate's availability)
• Type of employment: B2B contract
• Remuneration: up to 175 net + VAT per hour on B2B
• Project language: English

Key components of this project include:

• Implementing shift schedules to guarantee continuous security monitoring without any gaps
• Establishing an on-call rotation to ensure rapid response capabilities outside of regular business hours
• Developing and maintaining alert handling procedures that are tailored to a 24/7 operational environment
• Ensuring coordination between teams during handover periods to maintain consistent situational awareness
• Continuous training and preparedness for SOC analysts to handle incidents at any time, enhancing efficiency in detection and response

Responsibilities:

• Investigation and Support: Conduct investigations and provide remediation support to IT teams

• Procedure Development and Updates: Contribute to the creation and updating of procedures (incident response, crisis management with CERT, etc.)

• Continuous Improvement of Detection Capabilities: Enhance detection capabilities through detection rules, integration of new sensors, logging policies, etc

• Reporting and Dashboard Creation: Produce reports and develop dashboards

• Client Projects: Participate in client security hardening projects

Requirements:

• At least 5 years of experience in a SOC, where you've gained familiarity with various security tools

• Experience with SIEM or XDR Splunk - must have

• Knowledge of other XDR tools like Sekoia, Sentinel, is a big plus

• Security solutions like EDR (Sysmon, CrowdStrike, Sentinel One), proxy, etc.

• Common production environments: network (TCP/IP), systems (Windows, Unix), applications, and Cloud (AWS, Azure)

• Best practices for logging and attack methodologies across various security solutions

• Incident tracking tools (SIRP)

• Advanced investigations (Threat Hunting) is a plus

• Knowledge of SOAR, proficiency in threat hunting, and development skills (e.g., Python) are advantages

• Familiarity with the standard process for handling security incidents, as documented in NIST

• Good command of English (at least B2)

We offer:

• B2B contract with with rate up to 175 PLN NET/hour
• 100% remote job
•  Private medical care with dental care (covering 70% of costs) + rehabilitation package. Family package option possible
• Multisport card (also for an accompanying person)
• Life insurance
• Opportunity to development in international company with innovative projects