Technology Specialist

Stanowisko: Technology Specialist

Miejsce pracy: Kraków - 100% remote

Data dodania: 08.09.2022

DCG is a modern technology company, gathering in its ranks IT related professionals. Due to the continuous development and the large number of recruitment projects that we carry out for our Partners, we are looking for a person for the position:

Technology Specialist

Responsibilities:

  • Mature Threat hunting process by evolving and improving existing setup in terms of capabilities, process, and technologies
  • Prioritize future Hunts based on Threat intelligence and client environment risks together with the their threat hunting committee
  • Research trending campaigns, attack vectors, and search for these in environment
  • Hunt for new patterns, activities, and ever-changing tactics associated with advanced threat actors
  • Perform Hypothesis, IOC and analytics-based hunts in client environment
  • Perform Threat Hunting write-up that contains summary of actions performed, results discovered during the hunt, conclusions made and analyze those with the TH committee in the firm
  • When needed, work with alerts from the SOC Analysts, Incident response team or Vulnerability management team, to perform in depth analysis and triage threat activity based on host and network activity, traffic, and protocol analysis to identify infection vectors, the extent of the infection, and prepare high quality reports based on findings
  • Being the first responders to higher priority incidents analyzing threats doing investigation and triage
  • Coordination/alignment of broader SOC Analysts team and associated activity, with emphasis on real time proactive monitoring and incident response activity
  • Provide remote incident response activities and advice, to support operating companies during and immediately after security incidents
  • Detect threats, investigate those threats, and respond to them in a timely fashion (operational threat hunting related to realized security. incidents). Additionally, analysts may have responsibilities that involve implementing security measures as dictated by management
  • Create and mature operational security processes, procedures and SOPs for incident response
  • Carry out in-depth investigation on Security events, raise incidents and support the Incident Management process
  • Support creating security monitoring content
  • Occasionally be on-call to respond to incidents that arise outside of business hours
  • Service management aspect – operationally oversee and coordinate third parties involved in incident response and security monitoring

 

Requirements:

  • 3+ years working experience in security operations center of international companies and with SIEM solutions
  • Candidate has performed role of network security administrator, enabling services (e.g. NTP, SMTP, patching, Antivirus)
  • Candidate should has network admin skills
  • Knowledge of: Penetration testing, Malware engineering, Offensive security, Sysadmin skills (Linux/MAC/Windows)
  • Basic familiarity with scripting programming e.g. Bash, PowerShell, Python and Jupyter notebooks
  • Knowledge of industry standard security frameworks for information systems (NIST, ISO 27001/2, CSA, COBIT)
  • Knowledge of: server infrastructure (VMWare ESXi, storage, Azure, AWS), basic cryptography knowledge (basic algorithm knowledge), DB security, authentication protocol
  • Operational experience with the Microsoft security stack (Defender(s) especially Microsoft Defender for Endpoints
  • Operational experience with SIEM (Azure Sentinel)– Log Management, Vulnerability scanning and IPS/IDS technologies
  • Understanding of the Agile mindset and have basic knowledge on working in a Scrum Team
  • Certifications such as CEH, CIR, CISM, CISA, CGEDIT, any of the OWASP or similar
  • Experience with outsourced managed services, using ITIL processes
  • Kusto query language knowledge (KQL)

 

Offer:

  • Private medical care
  • Life insurance
  • Sports card
  • Trainings & Learning opportunities
  • Language courses
  • Work in an international environment
  • Ability to work 100% remotely

Przed wyslaniem CV/dokumentów aplikacyjnych, uprzejmie prosimy kandydatów o zapoznanie się z klauzulą informacyjną.

Po zapoznaniu się z klauzulą informacyjną podaną przez Administratora Danych dobrowolnie wyrażam zgodę na przetwarzanie przez Ogłoszeniodawcę moich danych osobowych, zawartych w mojej ofercie pracy, dla potrzeb procesu tej rekrutacji oraz dla realizacji przyszłych projektów rekrutacyjnych.

Agencja doradztwa personalnego (nr licencji 4642)

Dane spółki: Diverse CG Sp. z o.o. Sp.k., ul. Towarowa 28, 00-839 Warszawa                                                     

REGON: 141316780

NIP: 5222877930

KRS: 0000733458

Obserwuj nas: