KDR - doradztwo personalne Gdańsk, Gdynia, Trójmiasto, Sopot.
PL EN

OFERTY PRACY

Security SOC Engineer

Kraków, Katowice, Wrocław, Gdańsk, Warszawa lub 100% Remote

RESPONSIBILITIES

  • Create SIEM and SOAR detection and remediation scenarios, implement them as detection and response rules. Create, test, and update playbooks
  • Configure security tools integration with SIEM platform
  • Conduct cloud and infrastructure security posture assessment
  • Monitor on-prem and cloud infrastructure for attacks, intrusions, and unusual, unauthorized, or illegal activity
  • Monitor identity and access management, including monitoring for abuse of permissions by authorized system users
  • Perform threat hunting and support threat intelligence processes
  • Use advanced analytic tools to determine emerging threat patterns and vulnerabilities

REQUIREMENTS

  • Experience with Microsoft Sentinel SIEM solutions
  • At least 1 year of experience with Microsoft Azure
  • Good to have experience with one of the following SIEM solutions (Splunk, QRadar, ArcSight, LogRhythm, ELK, Wazuh, Apache Metron, OSSIM, etc.)
  • Experience with 1 or more SIRP/SOAR tools (TheHive, Cortex, Phantom, Demisto, Resilient, etc.)
  • Technical knowledge of Internet security, networking protocols, and related technologies, including IDS/IPS, firewalls, content filtering, Network Behavior Analysis tool, Anti-malware, and packet inspection
  • Basic understanding of Windows, Linux, DB, and network device monitoring and logging technics
  • Basic understanding of host and network security hardening, networking protocols, common intrusion techniques, and common risk management concepts
  • Basic knowledge of malware detection, intrusion detection, and prevention systems
  • Experience with network security will be a plus
  • Experience with Firewalls (F5, Juniper, Check Point, Palo Alto, Cisco) will be a plus

CV w j. angielskim proszę przesłać na adres: rekrutacja@kdr-hr.pl