Senior Information Security Operations Specialist
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Not Disclosed
Salary Not Disclosed
1 Vacancy
Job Description
SIEM SOAR and EDR Management:
- Maintain and enhance security platforms specifically Security Information and Event Management (SIEM) and Endpoint Detection & Response (EDR).
- Develop and administer SOC controls processes procedures and policies and review their application against the HungerStation environment to ensure their effectiveness and efficiency.
- Develop and review SIEM/EDR monitoring and performance metrics (KPIs) to report and measure SIEM/EDR performance.
- Monitor and react to security events/incidents through predefined and prescriptive actions.
- Conduct security event analysis to identify false positives and escalate events to CSIRT if needed.
- Responsible for the security analysis incident classification and incident response actions including notification and alerting.
Threat Hunting:
- Continuously check the latest threats and implement rapid response to mitigate potential damage resulting from cyber attacks.
- proactively and iteratively detect isolate and neutralize advanced threats that evade automated security solutions.
Incident Response Management:
- Lead and Conduct incident detection containment eradication and recovery procedures.
- Contribute to important initiatives ranging from incident response and incident management to cloud security and security controls.
- Define implement and tune detective capabilities and data sources to detect and remediate malicious activity.
- Develop security automation capabilities to decrease response times increase effectiveness eliminate waste and streamline incident response operations.
Governance and Resilience:
- Follow all relevant policies procedures and processes in order for the daily work to be carried out in a controlled and consistent manner.
- Contribute to the identification of opportunities for continuous improvement of processes practices work processes costeffectiveness and productivity enhancement.
- Promote to other employees within the organization the implementation and adherence to policies procedures processes and instructions.
Daily Operations:
- Follow daily operations relating to the job to ensure work continuity.
- Contribute to preparing timely and accurate reports that concern the line of work to meet the requirements objectives and standards.
- Ensure the satisfaction of both internal and external customers by addressing their needs in a courteous and timely manner.
Qualifications :
- Youve completed a degree in computer science software engineering.
- 5 years of experience in Security preferably in a Cyber Security firm.
- Experience with log management tools and security event correlation.
- Experience working with various Cloud platforms such as AWS GCP or Azure.
- Experience working with SOAR tools including playbook development and integration.
- Experience with and integrating other security solutions such as IPS EDR IAM PAM and Vulnerability Scanning.
- Good knowledge of MITRE ATT&CK Cyber Kill Chain and Malware Analysis.
- Good knowledge of Network Security Monitoring.
- Experience responding to attack vectors: malware data exfiltration DDoS and phishing.
- Certifications like CEH GCIH GCIA are a plus
Additional Information :
- We offer visa and relocation support globally to our permanent employees.
- Exchange ideas and meet 2000 colleagues from different teams within Delivery Hero in our active guilds and through our global tech and product community.
- Develop your skills with your personal educational budget for conferences and external training.
- Access our elearning platform LinkedIn and participate in our various inhouse training programs
- And much more
Remote Work :
No
Employment Type :
Contract
Employment Type
Contract
