Head of Information Security at Aurora shaping security strategy and governance in a software - focused global business. Leading security efforts to ensure resilience and compliance across operations.
About the role
- Security Detection Specialist responsible for detecting cybersecurity incidents using advanced security technologies. Analyzing data feeds and leveraging security tools for incident detection and reporting.
Responsibilities
- Analysis of data feeds from various security tools and logs
- Identification of capabilities and quality of these feeds and recommend improvements
- Implementation of new content use cases based on threat intelligence, analyst feedback, available log data, previous incidents
- Perform day to day activities of the content life cycle, including creating new use cases, testing content, tuning, and deprecating content
- Strong documentation and communication skills and ability to maintain associated documentation
- Ability to drive process improvements and identify gaps
- Assist with development of parsers or field extractions to facilitate reliable content development
- Knowledge of programming or scripting fundamentals; Python 3 preferred
- Create, implement, document and maintain novel analytic methods and techniques for incident detection
- Share knowledge, mentor and train junior engineers and analysts
Requirements
- At least five (5) years of related work experience in network operations
- At least two (2) years of experience in network security (Firewall, Network Access, Security controls)
- Advanced knowledge of SIEM correlation engines, reporting capabilities, and dashboards
- Proven expertise using Google Chronicle (SecOps), Splunk, or Microsoft Sentinel
- Advanced knowledge and interest in attacking tools, tactics, and procedures (TTPs)
- Strong understanding of cyber kill chains and the MITRE ATT&CK framework
- Experience with associated detection tools and technologies (IDS, EDR, etc.)
- Fluent in networking and common protocols: HTTP, DNS, SMB, IP, TCP, UDP
- Working knowledge of web technologies: SSL, Web Services, Proxy configurations
- In-depth knowledge of vulnerabilities and exploitation, including detection and mitigation techniques
Benefits
- Vacation: 15 days
- Sick/Personal Days: 15 days
- Rice Allowance
- HMO Coverage
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Senior Security Engineer specializing in penetration testing and security strategies for fintech. Collaborating with teams to enhance security for AI applications and financial systems.
Principal Cyber Security Engineer for Identity Access Management at MSK managing identity solutions and advanced identity platforms. Partnering with stakeholders to align identity strategy and lead IAM initiatives.
Join The Missing Link as a Security Engineer, leveraging 3 - 4 years of IT Security experience. Lead projects in a collaborative environment with a focus on innovation and impact.
Engineer in Health, Safety and Environment for ArianeGroup focusing on industrial risk management. Involves audits, assessments, and safety training participation.
Senior Product Security Engineer at Red Hat focusing on security and compliance for digital sovereign products while collaborating across global teams and enhancing automation.
Security Engineer safeguarding K - 12 student data in several locations for EduTech startup. Designing secure software systems and ensuring data protection to comply with privacy standards.
Security Engineer focusing on data protection and privacy for Kira Learning's educational technology. Safeguarding K - 12 student data while collaborating with engineering teams on secure software development.
Senior Cybersecurity Engineer responsible for protecting Advansys and its clients' IT infrastructure. Designing, implementing, and managing security solutions, while mentoring junior engineers.
Security Engineer responsible for incident response and security protocol design at Sinch. Joining a global team to safeguard sensitive information and enhance cybersecurity measures.