vacancy Security Engineer
We are looking for a Security Engineer to create and manage SIEM use cases to improve threat detection, identify and mitigate security threats, automate detection processes, and apply frameworks like MITRE ATT&CK to strengthen our security posture.
About the Job
As a Security Use Case Developer, you will play a key role in our Cyber Defense Center by creating and managing SIEM use cases to improve threat detection. You’ll identify and mitigate security threats, automate detection processes, and apply frameworks like MITRE ATT&CK to strengthen our security posture.
The core facts
- Collaborate with the security team to design, create, and fine-tune custom security use cases within our SIEM platform to detect potential security incidents and vulnerabilities effectively
- Leverage your knowledge of MITRE ATT&CK to align threat detection strategies and response techniques with industry best practices, enhancing our ability to detect and thwart advanced threats
- Stay abreast of the evolving cybersecurity landscape, incorporating the latest threat intelligence into SIEM use cases and MITRE ATT&CK matrices to bolster our detection and response capabilities
- Analyze security logs and data from various sources, identifying anomalies and patterns that could signify security breaches or weaknesses
- Collaborate with IT and operations teams to identify detection rules scenarios and exploits indicators
- Ensure that security policies and procedures are consistently adhered to across the organization, making recommendations for enhancements as necessary
- Maintain comprehensive documentation related to SIEM use cases, incident response protocols, and security best practices, with an emphasis on MITRE ATT&CK techniques and mappings
- Work closely with cross-functional teams to foster a culture of security awareness and contribute to our overall security strategy
Your core competencies
- A bachelor's degree in computer science, information technology, cybersecurity, or a related field is preferred
- A minimum of 3-4 years of hands-on experience in a security analyst role, with a focus on SIEM use case development, security incident response, and knowledge of the MITRE ATT&CK framework. Strong knowledge about Operating Systems, Databases, Networking. Experience in red teaming/pentesting, would be consider an advantage
- Demonstrated proficiency in working with SIEM platforms (e.g., Splunk, IBM QRadar, ArcSight) and creating custom detection rules, alerts, dashboards
- A strong foundation in cybersecurity principles, including an understanding of common threats, vulnerabilities, and attack vectors
- Knowledge of the MITRE ATT&CK framework, including its tactics, techniques, and procedures (TTPs), and the ability to apply this knowledge to enhance our threat detection and response strategies
- Excellent analytical and problem-solving abilities to identify and respond effectively to security incidents
- Strong verbal and written communication skills for documenting findings, creating reports, and collaborating with team members and stakeholders
- A keen eye for detail to identify subtle signs of security threats and vulnerabilities
Our benefits
We provide a work environment that offers the necessary flexibility and support for your success both professionally and personally.
The application process
Find the position you like and apply
First, we will review your CV. Second, we will inform you about the next recruitment steps. *only selected candidates will be contacted.
Screening call with our HR (30-60 min)
During this call, we will give you more details about the company, the role and ask you a few questions related to your experience and expectations.
Technical assessment (60 min)
The number of interviews required may vary depending on the role, typically ranging from one to two. During this interview your technical skills will be assessed by the manager.
Final interview/ Meet the team (60-90 min)
This online meeting is an opportunity to assess the compatibility between you and our team. We would like to know you better, understand what you bring to the team from technical and soft skills' perspective. You can meet your future colleagues, gain further insight into the role, ask any questions you may have, and gain a sense of our company culture and atmosphere.
Offer
Once we extend an offer and you accept, we will begin planning your onboarding.
Welcome aboard!
On your first day, you will receive your equipment and be introduced to your team guided by your assigned buddy.