A unique opportunity to be an innovator in the implementation of information technologies in the industrial sector of Ukraine.
Interaction with a strong, proactive, open-minded team.
Work support, accompaniment and 1-to-1 meetings with the manager.
Participation in workshops and trainings within the company to transfer experience to your team, as well as participate in specialized conferences.
WHAT DO YOU NEED TO DO?
Express analysis, classification of information security events;
Make decisions on the closure of typical IS events or their escalation;
Prompt development of recommendations for the localization and neutralization of information security incidents;
Operational coordination of the process of responding to information security incidents; (interaction with IT department, business process owners)
Responding to individual information security incidents by means of remote work;
Carrying out post-incident activities (retrospective analysis of information security incidents, development of recommendations for their prevention, preparation of reports);
Registration of information about cyber threats and information security incidents;
Development of proposals for improving the processes and technologies for monitoring and analyzing information security events.
Higher education in the field of information security or IT;
Work experience of at least 2 years of practical (technical) work in the field of IT and / or information security (of which at least 1 year in the field of information security);
Experience in administering SIEM systems (preferably);
Content creation in SIEM systems, incl.using Snort, Yara, Sigma;
Programming skills in scripting languages (Python, Powershell, Bash) or high-level languagesGeneral knowledge and skills in the field of detection, analysis and response to information security incidents
Experience in the development of analytical reports, technical documentation.
Experience in administration NG / FW, IPS, AV SIEM certification
Experience in analyzing, localizing, neutralizing and investigating information security incidents Availability of functional certification in the field of information security
Experience in administration (implementation) of Microsoft security technologies and products.
WHAT DO WE OFFER:
Competitive salary with flexible bonus system;
Official employment and security according to the Labor Code;
Corporate mobile communication, which is paid for by the company;
WEBSITE AND TO IMPROVE THE SITE BROWING EXPERIENCE.