Channels / CY iT HR
CY iT HR
@cyprusithr · supergroup
· filtered by
Антон Журавлев
Антон Журавлев
2023-06-29 08:17 UTC
#vacancy #remote #soc #security #ciso
Vacancy: Security Operation Center Manager
🏭Company: SumSub
🌐Location: Armenien / Georgia / world wide
💻Job type: remote, full-time
💰Salary: 3 000 - 4 000 €
📌Responsibilities:
• Development and organization of complex architecture and processes for building events and incident management center for the company (Security Operations Center).
• Development of division operating principles, policies, incident response procedures, incident handling procedures, performance benchmarks.
• Ensuring monitoring and analysis of events, timely detection and prevention of exploitation of vulnerabilities, unwanted actions of internal and external intruders.
• Manage employees’ reported incidents.
• Ensuring the identification of vulnerabilities in business applications (SaaS), Windows Terminal Servers and network, AWS infrastructure of Sumsub, preparing reports on the results of identified vulnerabilities, and preparing recommendations for their elimination.
• Collection and analysis of materials (network traffic dumps, disk images, memory dumps, system logs, malware samples).
• Recruitment of personnel according to roles in the team.
📌Requirements:
• At least three years of experience in Information Security,
• Practical experience with Windows Active Directory and Unix administration,
• Practical experience with logs collection and monitoring, alert and correlation rules development and automation or routine tasks (syslog protocol, SIEM and monitoring systems, Zabbix, Splunk On-Call would be a plus),
• Experience in integrating business applications and existing IT infrastructure with SIEM solutions,
• Experience with grep, regular expressions, SQL query,
• Practical experience with DLP and time recording systems would be a plus,
• Experience in setting rules based on behavioral analytics to implement fraud prevention approach,
• Experience in implementing projects to build monitoring center - start from the very beginning as a solo specialist and build a required processes and hire the team,
• Experience in investigating information security incidents, collecting and storing logs for investigating incidents, identifying and eliminating the causes of incidents,
• Knowledge of modern methods of classifying tactics and techniques of attackers, the main vectors of attacks, ways to detect and counter them,
• Knowledge and understanding of IT infrastructure security technologies (SIEM, DLP, vulnerability scanners, IDS / IPS, ME, Antiviruses, etc.),
• Understanding of network technologies, typical IT architectures and features of information systems functioning.
**
📌Benefits:**
• Working with a product that matters to the business. Our technology helps protect millions of online service users around the world
• Opportunity to receive professional education
• Career prospects Regular remuneration reviews - we reward excellent performance
📲 @zhur_an
Vacancy: Security Operation Center Manager
🏭Company: SumSub
🌐Location: Armenien / Georgia / world wide
💻Job type: remote, full-time
💰Salary: 3 000 - 4 000 €
📌Responsibilities:
• Development and organization of complex architecture and processes for building events and incident management center for the company (Security Operations Center).
• Development of division operating principles, policies, incident response procedures, incident handling procedures, performance benchmarks.
• Ensuring monitoring and analysis of events, timely detection and prevention of exploitation of vulnerabilities, unwanted actions of internal and external intruders.
• Manage employees’ reported incidents.
• Ensuring the identification of vulnerabilities in business applications (SaaS), Windows Terminal Servers and network, AWS infrastructure of Sumsub, preparing reports on the results of identified vulnerabilities, and preparing recommendations for their elimination.
• Collection and analysis of materials (network traffic dumps, disk images, memory dumps, system logs, malware samples).
• Recruitment of personnel according to roles in the team.
📌Requirements:
• At least three years of experience in Information Security,
• Practical experience with Windows Active Directory and Unix administration,
• Practical experience with logs collection and monitoring, alert and correlation rules development and automation or routine tasks (syslog protocol, SIEM and monitoring systems, Zabbix, Splunk On-Call would be a plus),
• Experience in integrating business applications and existing IT infrastructure with SIEM solutions,
• Experience with grep, regular expressions, SQL query,
• Practical experience with DLP and time recording systems would be a plus,
• Experience in setting rules based on behavioral analytics to implement fraud prevention approach,
• Experience in implementing projects to build monitoring center - start from the very beginning as a solo specialist and build a required processes and hire the team,
• Experience in investigating information security incidents, collecting and storing logs for investigating incidents, identifying and eliminating the causes of incidents,
• Knowledge of modern methods of classifying tactics and techniques of attackers, the main vectors of attacks, ways to detect and counter them,
• Knowledge and understanding of IT infrastructure security technologies (SIEM, DLP, vulnerability scanners, IDS / IPS, ME, Antiviruses, etc.),
• Understanding of network technologies, typical IT architectures and features of information systems functioning.
**
📌Benefits:**
• Working with a product that matters to the business. Our technology helps protect millions of online service users around the world
• Opportunity to receive professional education
• Career prospects Regular remuneration reviews - we reward excellent performance
📲 @zhur_an
1 message on this day