SOC Analyst

To respond

ADVANTAGES OF WORK IN OUR COMPANY: 

  • A unique opportunity to be an innovator in the implementation of information technologies in the industrial sector of Ukraine. 
  • Interaction with a strong, proactive, open-minded team. 
  • Work support, accompaniment and 1-to-1 meetings with the manager. 
  • Participation in workshops and trainings within the company to transfer experience to your team, as well as participate in specialized conferences.

WHAT DO YOU NEED TO DO?

  • Express analysis, classification of information security events;
  • Make decisions on the closure of typical IS events or their escalation;
  • Prompt development of recommendations for the localization and neutralization of information security incidents;
  • Operational coordination of the process of responding to information security incidents; (interaction with IT department, business process owners)
  • Responding to individual information security incidents by means of remote work;
  • Carrying out post-incident activities (retrospective analysis of information security incidents, development of recommendations for their prevention, preparation of reports);
  • Registration of information about cyber threats and information security incidents;
  • Development of proposals for improving the processes and technologies for monitoring and analyzing information security events.

SKILLS REQUIRED: 

  • Higher education in the field of information security or IT; 
  • Work experience of at least 2 years of practical (technical) work in the field of IT and / or information security (of which at least 1 year in the field of information security); 
  • Experience in administering SIEM systems (preferably); 
  • Content creation in SIEM systems, incl.using Snort, Yara, Sigma;  
  • Programming skills in scripting languages (Python, Powershell, Bash) or high-level languagesGeneral knowledge and skills in the field of detection, analysis and response to information security incidents 
  • Experience in the development of analytical reports, technical documentation.

EXTRA SKILLS: 

  • Experience in administration NG / FW, IPS, AV SIEM certification 
  • Experience in analyzing, localizing, neutralizing and investigating information security incidents Availability of functional certification in the field of information security 
  • Experience in administration (implementation) of Microsoft security technologies and products.

WHAT DO WE OFFER: 

  • Competitive salary with flexible bonus system; 
  • Official employment and security according to the Labor Code; 
  • Health insurance; 
  • Corporate mobile communication, which is paid for by the company; 
  • Periodic corporate events, including sports.
To respond
Do you know who the vacancy is suitable for? Share it and get +10 karma

Do you want to work with us? Write!

logo