Informacje o stanowisku

Our IT Security team is looking for a SOC Security Specialist to assist and support within a fast-growing company. You will be responsible for the correct alignment of our security needs within the security operations services, ensuring the harmonization with business strategic goals.

As the SOC Security Specialist, you will become the main point of contact and technical coordinator for Technical Crisis Response, helping with the definition and maintenance of our plans and procedures. Also, your knowledge and willingness to learn on new security trends and technologies will be of great value to our company, while identifying efficiency and automation opportunities.

This role, reporting directly to the IT Security Director, will include the following responsibilities:

• Plan, direct and control the Security Operations Center (SOC) global functions and operations;
• Ensure 24x7 monitoring, detection and analysis of incidents to protect EcoVadis, supervising that all security incidents are addressed, ensuring timely escalation, and tracking adequate remediation;
• Manage cyber-intelligence capabilities to identify and proactively protect the company against potential threats, brand abuses and risks;
• Understand SOC providers’ services, while ensuring proper prioritization, alignment and coordination with internal stakeholders;
• Responsible for security event monitoring, detecting, alerting and responding, as well as becoming the primary Security Incident Response Coordinator;
• Ensure there are adequate monitoring and detection mechanisms, challenge our providers’ security guidance, and test and update the quality of these protective measures on a regular basis;
• Revise and develop documentation and processes to strengthen the SOC function, to facilitate the integration with other business units;
• Create and maintain policies, standards and a service catalog pertaining to our SOC services, either autonomously or collaborating with the Network and Security Operations team;
• Establish security guidelines and improvements for our security operations, in collaboration with network operations (ZTNA, SWG, DLP,...);
• Become the primary point of contact for security needs within SASE operations;
• Conduct regular checks within our infrastructure to identify missing gaps in our detection capacity, and provide recommendations for improvement (Threat Hunting);
• Control the use of resources and execute corrective actions where applicable;
• Ensure daily management, administration & maintenance of security devices to achieve operational effectiveness;
• Create reports, dashboards and metrics for SOC services, with multiple target audiences (technical and non-technical) and presentations when needed;
• Maintain our Incident and Crisis Response Plans, create and update playbooks and procedures, and conduct tabletop simulations with stakeholders;
• Ensuring threat management, threat modeling, identify threat vectors and develop use cases for security monitoring, in coordination with all SOC services;
• Be a leader in the expansion, innovation and growth of the SOC;
• Advocate for continuous improvement and automation wherever possible;
• Assist with other organization security projects and tasks as required.

Qualifications

• 3+ years of experience in a similar role, with emphasis on security operations, incident management, intrusion analysis;
• Minimum Bachelor of Science degree in Computer Science, Computer Engineering, or a related technical field;
• Professional certifications (SANS GIAC / GCIH, Azure SC-200);
• Hands-on experience in SOC definition and strategy;
• Advanced knowledge of Security Incident and Event Monitoring (SIEM); Behavior analysis (UEBA); EndPoint security (EDR); Network security (NDR); Threat Intelligence (CTI); Threat Hunting (TH); Security Service Edge (SSE); Web Content Filtering (SWG); Identity protection (IAM / PAM);
• In-depth familiarity with security policies, industry standards and best practices;
• Thorough knowledge of Microsoft Azure security solutions (Sentinel);
• Experience in designing and building security operations centers from scratch, and/or expanding their services;
• Incident management process development and incident management and coordination experience;
• Experience with SOC automation development and cloud operations’ monitoring;
• Ability to lead and communicate efficiently within a team environment;
• Ability to conduct research about areas unknown to him/her, and use that knowledge to deliver security guidelines and propose improvements;
• Open to work in an international, multilingual environment;
• Proficient in English (oral and written);
• Hands-on experience with Google Workspace is a plus.

Additional Information

Location: Warsaw/ remote from Poland

Start date: ASAP

Contract of Employment or B2B

Everyone at EcoVadis contributes to a culture of trust, respect and empowerment. Our growing team in Poland is full of talented professionals from various sectors who all share a desire to make an impact. We offer competitive salaries and support personal growth from day one with extensive onboarding, mentoring and a brand new e-learning platform bursting with courses and modules so you can learn new skills and fine-tune old ones.



Benefits:

• Support with all the necessary office and IT equipment
• Optional (fully covered or co-financed) health care and life insurance
• Multisport card and wellness allowance
• Multicafeteria Lunch card
• Annual performance bonus
• Hybrid/ full remote work
• Remote work from abroad policy
• Internet and Electricity bill allowance
• CSR activities
• Modern, pet-friendly office in the city center (next to Rondo ONZ)
• Community service day when volunteering

Warszawa - Oferty pracy w okolicznych lokalizacjach