Your impact
RESPONSIBILITIES:
- Triage and remediation of security events, incidents and anomalies escalated by Level 1 analysts with use of Security Incident and Event Management (SIEM), Security Orchestration, Automation and Response (SOAR), Endpoint Detection and Response (EDR), User Entity and Behavior Analytics (UEBA), Phishing Email, Data Loss Prevention (DLP), (Reports, Monitoring and other tools, by following SOC procedures or escalating to other teams (Incident Response, Operations, IT support)
- Conduct analysis of security and network traffic and host activity across a wide array of technologies and platforms
- Development of SIEM correlation rules and incorporating new log source types; on-premise and cloud solutions
- Installation, Development and Maintenance of assigned SOC applications and systems
- Identify opportunities for SOC processes and procedures improvement related to security, controls, compliance, access management
- Threat Hunting - Proactively and iteratively searching through networks to detect and isolate advanced threats that evade existing security solutions
- Assess vulnerability management reports to identify, document and remediate threat data
- Ensure confidentiality, Integrity and Availability of sensitive data
Here's what you'll need
The minimum qualifications for this position are:
- Bachelor's degree in computer science, Information security or related engineering major
- Min. 7 years’ experience in IT or Information Security in Global corporation
- Good knowledge about Networking, Application Protocols, Operating Systems and Cyber Security Protections
- Experience with several of the following: IPS/IDS, anti-virus and endpoint security, content filtering, firewalls, threat hunting, Insider Threat/Data Loss Prevention (DLP), load balancers, virtualization environments, cloud services, Windows Server and Unix operating systems
- Ability to perform job functions with considerable independence, judgement, and limited oversight
- Well organized individual with excellent written and verbal communications skills
- Possess superior problem solving skills
- Excellent written and verbal communication skills in English
- Passionate about technology and security and willing to learn
Preferred Qualifications:
- Cyber Security / Information Security / Security Operations Center (SOC) environment experience
- Experience with programming, API connectivity, and automation scripting
- LAN/WAN Networking experience
- Understanding of user Identity and Access Management
- Malware analysis and/or Reverse Engineering
- CompTIA Security+, Network+ or other relevant networking certifications
We offer:
- Unique company culture fostering individual career growth and work-life balance
- Full-time employment contract with salary corresponding to qualifications
- Hybrid or stationary working model - depending on your preferences
- Flexible benefits package (Lux Med medical care, psychological care, life insurance, My Benefit cafeteria system, including Multisport card co-financing, car park sharing system)
- Membership in Jacobs employee networks (Women's Network, OneWorld, PRISM, Careers Network, Green Team, Toastmasters, Collectively and others)
- Continuous development opportunities, including a range of professional trainings and certifications (e.g. ACCA, CIPS), Graduate Development Program, Learners’ Community, self-learning platform
If you require further support or reasonable adjustments with regards to the recruitment process (for example, you require the application form in a different format), please contact the team