Senior SOC Analyst (L2/L3) | 792 | Infopulse
EN
DE PL
Get in touch
Back
Cyber Security
REMOTE
ID:792
Facebook Linkedin Copy Link

Senior SOC Analyst (L2/L3)

Experience:

5+ years

English:

Upper-Intermediate

Location:

Ukraine, Poland, Bulgaria

Infopulse is inviting a talented professional to join our team as a Senior SOC Analyst (L2/L3).

Areas of Responsibility

  • Security monitoring of customer environment/systems
  • Incidents detection, investigation, reporting, handling. Recommendations on incident prevention development
  • Customer assistance on incidents handling and security improvements
  • SIEM solutions (preferable Microsoft Sentinel) deployment, integration, fine-tuning, analytical rules development and improvement
  • Customer transition projects technical support and/or leading (assistance in important log sources identification, audit configuration and fine tuning, events parsing, analysis and correlations, etc.)
  • Threat hunting, vulnerabilities discovering
  • Customer cloud (preferable Microsoft Azure and AWS) security assessment and hardening
  • Operational manuals and Knowledge base management
  • Mentoring of SOC L1 colleagues in terms of technical knowledge

Qualifications

  • 5+ years of progressive experience in IT security
  • Good self-organization and analytical skills
  • Experience in SIEM solutions implementation, configuration/tuning, support as well as usage for incident investigation
  • Experience in logs configuration, parsing, analysis for broad set of platforms
  • Logs extensive understanding in terms of incident investigation
  • Experience in Security incidents detection and investigation
  • Solid background on security or system administration:
    • Windows Server
    • Linux
    • Network devices (Switches, APs, Firewalls, IDS/IPS)
    • Experience in cloud or hybrid infrastructure hardening including:
    • MS Azure
    • Amazon AWS
  • Common network, infrastructure, application vulnerabilities awareness
  • Excellent understanding on how corporate IT infrastructure works
  • Threat intelligence experience
  • Threat hunting skills for broad set of log-sources
  • Extensive experience with Microsoft M/O365 set of security solutions deployment and maintenance:
    • Log analytics
    • Sentinel
    • Defender solutions family
    • Purview
  • Basic Malware reverse engineering skills would be a benefit
  • English - upper-intermediate 

Will be an advantage

  • Professional security certification: CISSP, CISM, CISA, MS SC-200, MS-500, AZ-500, SC-100 or AWS alternatives 

Your contact for this vacancy is:

Olena Ryzhko
Junior HR Manager

Send us your CV and we will get back to you.

Please add details to your request

If you wish, your application will be considered for other open positions at Infopulse. Data will not be used for any other purpose and will be deleted after 12 months from your latest job application date. *

Please enter the correct data

Thank you!

Your CV has been received. Our specialists will contact you if your skills meet the requirements of the position.

By using this web site you accept our use of cookies