SOC Engineer

SOC Engineer, SOC Specialist, IT
For our client we are looking for SOC Engineer.

As SOC Engineer you will be the primary voice is designing and implementing our underlying SOC infrastructure to support our ambitious detection and response goals. In your daily work you will support, design and configure our information systems in accordance with the detect and respond roadmap. The position is responsible for reviewing and improving security posture, participating in architecture review, translate ideas and requirements from analysts in the SOC, identified security risks into new functionality, hence improving our detection and response capabilities.

As SOC Engineer will be responsible for building the security architecture and systems within the SOC, as well as maintaining and improving the security monitoring and analysis tools. You will be one of our SIEM subject matter experts where you will also be responsible for the maintaining and recommending new tools and integrations as well as updating current systems. You will be a key player across technology groups interfacing with Network, Infrastructure, E-commerce with a remit of driving cyber best practices into our SOC operations.In this role your key responsibilities will be to serve as SIEM subject matter expert by:

• Understand our IT estate and develop detection requirements accordingly
• Integrate new data sources in an intelligent manner
• Develop parsers of new log sources if required
• Develop, implement and test new detection use-cases across our security toolkit
• Collaborate with other security analysts and threat and vulnerability specialists to improve detection and alerting capabilities including tuning to minimize false positive and negatives

And as SOC Engineer with a holistic technical focus by:
• Improve and maintain our detection and respond architectural roadmap and technical blueprint
• Work directly with security analysts and solution architects to improve our detect and respond workflows
• Integrate threat intelligence feeds
• Script and automate workflows of security processes and procedures where possible
• Translate security policies into effective technical use-cases patterns with automatization in mind
• Work directly with IT Service Management to integrate and streamline SOC processes with ITSM
• Development and automate IR playbooks
• Support practical exercises to continuously test detection and response capabilities
• Performs evaluation and selection of infrastructure or security related vendor products and solutions

We are looking for an experienced security engineer / security developer with proven track record in designing and building intelligent SOC technology where automation and integration are key enablers.
A successful candidate prioritizes well, communicates clearly, and has a consistent track record of delivering results. You probably have a degree in Computer Science, Engineering, Information Systems or similar.
You have 5+ years’ experience in working in and around a Security Operations Center and have demonstrated the ability to integrate several different log source types into SIEM and SOAR platforms.
The last couple of years you have focused intensively on cloud security applications and integration them into the SOC ecosystem.

• Experience of working with development and infrastructure teams to drive visibility and lower false alert rates
• Have practical experience working with various security logs sources
• Have solid experience with Microsoft Sentinel and the Defender Suite
• Proven ability to build, configure and tune SIEM solutions to ensure broad coverage
• Experience with SOAR automation processes and tools
• Knowledge of network security in IaaS, PaaS and SaaS multi-cloud environments
• Have solid scripting experience with PowerShell and/or Python
• Experience interacting with security operations tools through API
• Have expertise with TCP/IP network traffic and event log analysis

Don't hesitate, apply!
#1163750
Kliknij tutaj aby uzyskać dostęp do Polityki prywatności HAYS, która zawiera szczegółowe informacje na temat tego, w jaki sposób wykorzystujemy i chronimy twoje dane osobowe oraz Twoje prawa z tym związane.

podsumowanie

Rodzaj pracy
Stała
Branża/Sektor
Technologia & Usługi internetowe
Lokalizacja
Warszawa
Obszar specjalizacji
Technology
Nr ref.:
1163750

Skontaktuj się z konsultantem

Skontaktuj się Justyna Laskowska, Konsultant odpowiedzialny za tę rekrutację, znajduje się Warszawa
Hays, ul. Marszałkowska 126/134

Telefon: 722 226 269