Security Operations Engineer protecting Notion’s systems and users by investigating and responding to security events. Collaborating with a global team to enhance security processes and protocols.
About the role
- Security Monitoring Analyst developing XDR detection rules for cybersecurity at ESET. Actively contributing to threat defense innovation while monitoring security environments.
Responsibilities
- Research and develop XDR detection rules, to defend against emerging threats and vulnerabilities.
- Research XDR features and provide feature specifications and guidance for developer teams.
- Monitor environments for potential threats, vulnerabilities, and suspicious activities.
- Analyze security logs, alerts, and events to identify and respond to security incidents.
- Conduct root cause analysis for identified incidents and recommend remediation strategies.
- Participate in security research and innovation to advance threat defense capabilities.
- Stay informed about the latest cyber threat intelligence and industry trends.
- Provide guidance and training to team members on cloud security best practices.
- Communicate complex security concepts to non-technical audiences effectively.
- Collaborate in designing and developing Managed Detection and Response and other security monitoring services.
- Perform conceptual, systemic, creative and methodological activities.
- Carry out other tasks according to the instructions of the direct manager in accordance with the activities of the department and the company.
Requirements
- Education in IT security field is an advantage.
- Experience with security research and detection engineering is desirable.
- Experience as a SOC security analyst, or an equivalent position (also outside the SOC) where the main full-time job was the operation and evaluation of outputs from the security monitoring systems for the purpose of identifying and reporting potential security threats is an advantage.
- Experience with development of Sigma or Yara rules and Kusto, EQL, Lucene query languages are an advantage.
- Experience with forensic analysis and incident response is an advantage.
- Experience with penetration testing or red teaming is an advantage.
- Experience with at least one of the major cloud providers (Azure, AWS, GCP) is an advantage.
- Experience with big data technologies such as Elasticsearch, OpenSearch or Hadoop are an advantage.
- Experience with administration of Active Directory environments and Entra ID is an advantage.
- IT Security certificates or other technological certificates are advantage – Windows, Unix, Network Security
- Basic technical writing and report writing skills are an advantage.
- Good knowledge of the Windows/Linux operating system, knowledge of system tools.
- English - Upper intermediate (B2)
Benefits
- Health & well-being
- BenefitPlus Healthcare (check-ups/annual programs)
- Multisport card
- Travel card "električenka"
- Supplementary pension saving
- Sick days
- Family
- Marriage allowance
- Childbirth allowance
- Parental contribution
- ESET family events (Family day, St.Nicholas)
- Office Refreshments in the office (fruits, coffee, soft drinks)
- Let´s get together breakfast
- Activity room, quiet room
- ESET events (Žranica, Christmas party..), teambuildings
- Other
- Loyalty allowance
- Loyalty extra days off
- Loyalty cake
- Loyalty glass award
- Refer a friend
- Christmas presents
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
SecOps Engineer at Aristocrat maintaining security for innovative iGaming platforms and collaborating with cross - functional teams. Focused on AWS services security and compliance assessments.
Cybersecurity Incident Response Analyst handling security events and incidents at Var Group in a hybrid work environment. Focused on ensuring response to security incidents and improving security processes.
Cybersecurity Incident Response Analyst handling security incidents and threats. Working in a hybrid environment at Yarix, a leader in digital evolution.
IAM Security Ops Analyst overseeing access management for clinical trial applications at Syneos Health. Collaborating with IT and compliance teams to enforce IAM policies and improve operational performance.
Fraud Operations Group Manager responsible for managing fraud management policies in the Operations Services team. Leading teams in minimizing fraud impacts while ensuring compliance and operational objectives.
Information Security Analyst responsible for security operations, threat hunting, and incident response at Bellinati Perez. Involves collaboration with internal teams and use of advanced security tools.
Senior SOC Analyst specializing in security operations and incident response at PEXA, advancing digital property solutions in the UK. Collaborating with teams to enhance security measures and respond to incidents.
Overseeing global security operations across 81 sites for QVC Group, a Fortune 500 live shopping company. Managing security programs with expertise in investigations and crisis management.
Junior SOC Analyst supporting security team with monitoring and analysis of security incidents in Berlin. In a hybrid work environment, gain hands - on cybersecurity experience through mentorship.