noun_Email_707352 noun_917542_cc noun_Globe_1168332 Map point Play Untitled Retweet

SOC Security Incident Responder

Wroclaw

Regular

Application and Product Development

15 January 2021 - 29 April 2021

Cloud & Infra

As a SOC Cybersecurity Incident Responder, you are a highly technical, seasoned security professional with a complete detailed understanding of incident response, cybersecurity domains and today’s threats with years of experience immersed in Security Operations culture and Enterprise or Managed Security Services CSIRT, CERT, IR Teams. You will be working closely with our passionate Team of professionals - Security Threat Analysts, fellow Security Incident Responders, Threat Detection and Intelligence Experts, Security Architects, Engagement Managers, Software Architects. You will be reporting to the Head of Security Operations, TietoEVRY Security Services.

You will be responsible for:

  • Performing deep-dive incident analysis by correlating data from various sources

  • Determining if a critical system or data set has been impacted

  • Advises the Customer and internal Teams on threat remediation

  • Providing support for new analytics methods for detecting threats

  • Performing Emergency Incident Response activities

We expect you to have:

  • 8-12 years in Cybersecurity and SOC / CSIRT/ CERT Environments

  • Complete understanding of the security kill chain and MITRE ATT&CK Matrix

  • Complete understanding of security telemetry sources and analysis

  • Deep experience in threat detection - endpoint, network and cloud

  • Advanced scripting language programming (Python, Powershell, Bash)

  • Network security principles, protocols and technologies

  • Operating systems security principles and technologies

  • Application security principles and technologies

  • Data security principles, protocols and technologies

  • Basic malware assessment    

  • MS Windows operating systems administration

  • *NIX operating systems administration

  • Working with customer-specific environment (such as NGFW/IPS/SIEM/etc)

  • Working with IR orchestration systems (Phantom/Demisto/TheHive/MISP)

  • Technical certifications and trainings are a plus:

  • Python for Security Professionals / Python Scripting Expert (SPSE)

  • Incident Response and Advanced Forensics

  • Penetration Testing with Kali Linux (PWK) / Offensive Security Certified Professional (OSCP)

  • Red Hat Certified System Engineer / Administrator (RHCSA/RHCE)

  • SANS SEC501: Advanced Security Essentials - Enterprise Defender / GIAC Certified Enterprise Defender (GCED)

  • SANS SEC503: Intrusion Detection In-Depth / GIAC Certified Intrusion Analyst (GCIA)

  • SANS SEC504: Hacker Tools Techniques, Exploits and Incident Handling / GIAC Certified Incident Handler (GCIH)

  • Degree in Information Technology

  • Knowledge of Atlassian Stack (Confluence, Jira)

  • Knowledge of ServiceNow / other Customer Care platforms  

  • Finnish, Swedish and Norwegian language is a big plus

  • Exposure to corporate finance considerations - invoicing, pricing - a plus

  • Fluency in English, both spoken and written

We offer you:

  • Competitive salary

  • Private medical coverage 

  • Group life insurance 

  • Investment fund 

  • Lunch & home office allowance

  • & other benefits

The recruitment process is conducted fully remotely and embraces several steps:

  • Firstly: our recruitment team contact with you to know more about your expectations and experience.

  • Secondly: interview with manager & technical recruiters

  • Thirdly: decision and honest feedback.

About TietoEVRY

We are a team of professionals spread across many countries who are working on the frontline of a wide range of industries. We inspire, we engage and we deliver. We have global capabilities and a strong presence where our clients need it – in the Nordics or via local delivery centers across the globe. With us you will have the opportunity to directly influence your career development. If you have a good idea, people will listen to you. We believe that trust fosters freedom and creativity. Our culture is built on transparency and active sharing – a truly open environment.

Interested? We look forward to receiving your application and the opportunity to discuss with you!

 

About TietoEVRY

Welcome to an exciting journey. TietoEVRY creates digital advantage for businesses and societies. We are a leading digital services and software company with local presence and global capabilities. Nordic values and heritage are the foundation of TietoEVRY success. Let's build a brighter future. Together

Read more about us here.

Share on Facebook Tweet Share on LinkedIn