Responsibilities
* event monitoring, alert triage and incident escalation.
* investigation of security incidents and initiation of response measures.
* documentation of all investigation and response actions taken for each incident.
* working in shift system with on-call service to provide global 24/7 security support.
* participating in the development of disaster recovery plans and incident response strategies.
* being part of a global it-security team collaborates with other it infrastructure teams and an mdr provider.
* support of the it-security team in security engineering and governance projects.
* sensitize employees regarding it security policies and practices.
qualifications
* bachelor’s degree in cybersecurity, information technology, computer science, or a related field (or equivalent experience).
* 2–5 years of experience in a soc or cybersecurity operations environment, with hands-on experience in monitoring events, responding to security incidents and working with a siem or xdr platform.
* demonstrated experience in triaging, investigating, and responding to security incidents and alerts.
* skilled in configuring and optimizing siem tools for effective alert generation, log management, and event correlation.
* ability to interpret and analyze logs from various systems (e.g., firewalls, ids/ips, endpoint security, network devices).
* technical knowledge in areas such as network security, operating system security, application security, and information security in general.
* strong analytical skills and problem-solving abilities.
* excellent communication skills and the ability to explain technical concepts to a non-technical audience.
seniority level
* mid-senior level
employment type
* full-time
job function
* information technology
industries
* manufacturing
#j-18808-ljbffr