noun_Email_707352 noun_917542_cc noun_Globe_1168332 Map point Play Untitled Retweet

SOC SIEM Security Engineer

Ostrava

Regular

Technical and Functional Expertise

02 February 2021 - 30 April 2021

Cloud & Infra

Who we are: 

We are an international team responsible for SIEM (Security Information Event Management) operation in several Nordic countries. As a SOC SIEM Security Engineer, you are a highly technical, committed security professional with an emphasis on SIEM (Security Information Event Management) platforms, combined with a broad understanding of cybersecurity domains and today’s threats with a few years of experience immersed in General Security, IT, Security Operations culture and Enterprise or Managed Security Services SOC Teams. You will be working closely with our passionate Team of professionals - fellow SOC SIEM Engineers, Security Incident Responders, Threat Detection and Intelligence Experts, Security Architects, Engagement Managers, Software Architects. You will be reporting to the Manager of SOC SIEM Operations, TietoEVRY Cybersecurity Services. 

 

With us you will be responsible for: 

  • Ensuring the quality and value of the SOC SIEM Engineer output across all the activities. 

  • Initiating the SOC SIEM changes with the involved parties and internally interacting with the SOC SIEM Team Members on a daily basis. 

  • Identifying areas to tune detections and enhance security efficacy. 

  • Contributing to creation of the SOC SIEM Standard Operating Procedures (SOP). 

  • Working closely with the SOC Threat Detection team to elevate threat visibility. 

  • Sharing with SOC staff members the new tools, capabilities and processes. 

  • Contributing to the SOC SIEM Platform and Service innovation roadmap. 

  • Cooperation on SOC SIEM Development across platforms to ensure success. 

  • Providing input for Customer Briefings to the SOC Engagement Manager. 

 

We expect you to have: 

  • Fluency in English, both spoken and written. 

  • Proven reporting and presentation skills. 

  • Degree in Information Technology. 

  • 1+ years in IT, Cybersecurity and SOC environments. 

  • Strong communication skills. 

  • Good feeling for the SOC environment dynamics and work ethics. 

  • Good organizational skill set and proactive mentality. 

 

Nice to have:

  • Background in SIEM technologies - correlations, custom parsers and alarm triggers. 

  • General understanding of the security and security analysis. 

  • General experience in threat detection - endpoint, network and cloud. 

  • Expertise with Cloud SaaS SIEM Technologies (MS Sentinel, Elastic, Rapid7) a big plus 

  • Security Technical Certifications (SANS, OSCP, vendor-related) highly desired. 

  • General understanding of the security kill chain and MITRE ATT&CK Matrix. 

  • Knowledge of Atlassian Stack (Confluence, Jira). 

  • Knowledge of ServiceNow / other IT Service Management platforms.   

 

 

 

What do we offer: 

  • friendly, open source company culture & modern offices with relaxing and gaming spots 

  • permanent working contract, 5 weeks off 

  • possibilities to rapidly increase your technical and soft-skills by internal and external trainings 

  • food coupons for 100  

  • home office according to your needs and actual project situation 

  • contribution for life and pension insurance 

  • Cafeteria system of company benefits – you choose how to spend your credits: restaurants, wellness, culture, sports, traveling… 

 

About TietoEVRY

Welcome to an exciting journey. TietoEVRY creates digital advantage for businesses and societies. We are a leading digital services and software company with local presence and global capabilities. Nordic values and heritage are the foundation of TietoEVRY success. Let's build a brighter future. Together

Read more about us here.

Share on Facebook Tweet Share on LinkedIn