Security Operations Engineer
Experience:
3+ years
English:
Upper-Intermediate
Location:
Varna, Sofia
Infopulse is inviting a talented professional to join our growing team as a Security Operations Engineer.
Join the team of our customer BICS – a global telecommunication enabler with a physical network stretching through the globe!
Areas of Responsibility
As a member of the team:
- You will focus on corporate security awareness and training programs of different nature.
- You manage security Incidents & Vulnerabilities using our SOC ticketing system.
- Ensure an adequate problem description for each reported issue,
- Determine and appoint correct severity to the events.
- Ensure that incident tickets are accurate and actively follow-up for status updates until remediation/ticket closure
- You will actively follow-up and actively poll for status updates and progress until remediation / ticket closure.
- Prepare monthly report for Senior Management with notable security events details
- Log and follow-up policy / risk exception and exemptions through their lifecycle.
- Manage security certificates and ensure timely renewal
- Logging and tracking of temporary access or privileges
- Coordinate pentest activities by maintaining calendar, record consume/available mandays & costs, ensure pentest reports are centralized and securely stored.
- Initiate, follow-up and register evidence of Quarterly User Access reviews
- Be actively involved in the vulnerability scanning process, analysis and following-up with remediation actions
- Initiate and coordinate Risk Assessment
- Explore our big data, analyse trends, identify and maintain meaningful KPI’s and dashboards
- Scan for compliance against our policies and standards, log deviations and strive for remediation
- Develop and fine-tune existing security processes and procedures
- Apply automation where required and/or meaningful
- Act as a first-line contact point for various security consultations
You will have (and want to seize) the opportunity to extend your knowledge, explore, learn and grow in projects like:
- Deployment and operations of a Security Information and Event Management (SIEM) environment.
- Integration of the SIEM tool with sources of security incidents – e.g. logs from servers and applications, IDS/IPS, network and security devices.
- Setting up and operating Vulnerability Management system, Endpoint protection system, etc.
- Threat hunting activities using all available tools (SIEM, IDS, EDR etc)
- Actively detect and identify security vulnerabilities and weaknesses and determine the remediation plan
Qualifications
- At least 3 years of professional experience with IT and Network Security products and services.
- Passion for IT security tools, products and services, Network and Server Administration technologies
- Knowledge and experience with administration and hardening of Unix/Linux and\or Microsoft operating systems
- Knowledge of IT and Information Security principles, techniques and technologies
- Practical knowledge of security systems on the market (eg. firewall, SSL/IPSec VPN, Proxy, Remote Access, PKI ...)
- Sound knowledge of Networking protocols and technologies, (e.g., TCP/IP, Firewalls, NGFW, Routers, etc.)
- Application security and general information security knowledge (eg. XSS, buffer overflow, URL tampering, SQL Injection, DDoS, Botnets, ...)
- Proficiency in written and spoken English
- You have basic programming and/or scripting skills (automation)
Will be an advantage
- Programming and scripting skills (Python, Bash, Powershell, Perl)
- Experience with collaboration tools / ticketing systems (RT, Jira)
- Familiarity with telco technologies / protocols
- Experience with Endpoint Detection and Response Solutions
- Experience with Vulnerability scanners like Nessus, MVM, Qualys, etc.
- Experience with IDS/IPS solutions (Security Onion, Snort, Cisco IPS, NGIPS)
- IT Security Certifications like CISSP, CISM, CISA, CEH, GCIH, GCIA, OSCP, etc
- Experience with SIEM and/or SOAR solutions
Personal skills
- Ability to manage multiple tasks and resources
- Good presentation and communication skills
- Strong analytical and problem-solving skills
- Flexible and open for fast changes, always willing to learn and improve
- You are structured and keen to identify and implement improvements