SIEM/SOAR Engineer - Security Tribe

86_4501736

Obowiązki

• Design/maintain a SIEM and SOAR systems for TMPL and external customers
• Developing security products for TMPL customers
• Support L2 SOC team with analyzing of security incidents
• Reviewing existing environment and suggesting improvements
• Proposing ideas which will result in increased security and will be align with our strategy
• Preparing technical documentation e.g. High Level Designs, Low Level Designs and reports

Wymagania

• +3 years of experience in IT Operations / IT Security
• Technical/hands-on competency in SIEM products, esp. Splunk
• Practical knowledge of network issues (routing, TCP/IP protocols)
• Experience in IT Security systems (Next Generation Firewall, WAF, Anty DDoS,  EDR, IPS/IDS) -at least one of them
• Knowledge of Unix, Linux systems administration
• Ability to work in Agile framework to drive success of the product
• Experienced working across diverse teams to solve unstructured problems and facilitate solutions
• Self-dependent way of working
• Good communications skills
• Be able to communicate (B1/B2) in English, both written and verbal

Nice to have:

• Experience in Cloud solutions (Azzure, Office365, AWS)
• Cyber Security knowledge proven by certificates or complementary experience: CISSP, CySA+, Pentest+, CEH, Comptia SEC+, MCSA/MCSE/MCITP or similar

Oferujemy

Why you should join us? Our SOC protects not only T-Mobile Polska resources, but also operates in MSSP mode. Due to this diversity, you can work with many types of technology, your tasks will be varied. Our agile team of SecDevOps engineers will help you get familiar  with TMPL and customers  environment.

We are growing,  number of SOC customers constantly increase, so we want to strengthen our team. If you are open to new challenges, you have a head full of ideas and you like working in a team, join us!

Źródło: T-mobile/Praca