Error
Lead Security Engineer (offline)
Responsibilities
Ready to:
Regular communication with client and partners
Inspire and motivate the team to achieve business goals
Create technical solutions, design and create architecture for large scale SIEM
Develop custom integrations with SIEM, logging and real-time analysis platforms
Develop actionable threat detection content
Requirements
Essential professional experience:
1-2 years of Leadership experience
4-5 years of experience as SIEM engineer, IT security specialist or SOC analyst
Extensive technical background
Experience with SIEM administration and content development (any of Elastic Stack, Splunk, Azure Sentinel, ArcSight, etc)
System administrator or devops background: Windows, Unix systems, DBs
Scripting development (any of Bash, Python, PowerShell, Ruby, etc)
Strong background of analytical content development (Threat Detection Use cases)
Understanding of MITRE ATT&CK and Cyber Kill Chain frameworks
Fluent English
What we can offer:
- Competitive salary;
- Paid annual leave;
- The ability to attend conferences, webinars, and other events that will enhance your professional skills;
- Regular corporate events and team building;
- English courses;
- Medical insurance;
- Short Fridays;
- A friendly and young team of professionals.
Working conditions:
- 5-day work week;
- 8-hour working day (flexible schedule);
- Spacious comfortable office near the metro and the center of Kyiv;
- Practices of remote work.
Ready to:
Regular communication with client and partners
Inspire and motivate the team to achieve business goals
Create technical solutions, design and create architecture for large scale SIEM
Develop custom integrations with SIEM, logging and real-time analysis platforms
Develop actionable threat detection content
Requirements
Essential professional experience:
1-2 years of Leadership experience
4-5 years of experience as SIEM engineer, IT security specialist or SOC analyst
Extensive technical background
Experience with SIEM administration and content development (any of Elastic Stack, Splunk, Azure Sentinel, ArcSight, etc)
System administrator or devops background: Windows, Unix systems, DBs
Scripting development (any of Bash, Python, PowerShell, Ruby, etc)
Strong background of analytical content development (Threat Detection Use cases)
Understanding of MITRE ATT&CK and Cyber Kill Chain frameworks
Fluent English
What we can offer:
- Competitive salary;
- Paid annual leave;
- The ability to attend conferences, webinars, and other events that will enhance your professional skills;
- Regular corporate events and team building;
- English courses;
- Medical insurance;
- Short Fridays;
- A friendly and young team of professionals.
Working conditions:
- 5-day work week;
- 8-hour working day (flexible schedule);
- Spacious comfortable office near the metro and the center of Kyiv;
- Practices of remote work.
About SOC Prime
SOC Prime is the only Threat Detection Marketplace where researchers monetize their content to help security teams defend against attacks faster and more efficiently than ever. Powered by its Detection as Code platform, SOC Prime curates the most up-to-date Sigma-based threat detection content from over 300 researchers and natively delivers it via subscription to 20+ SIEM and XDR platforms at more than 6,000 enterprises, governments and MDRs worldwide.Company website:
https://socprime.com/
DOU company page:
https://jobs.dou.ua/companies/soc-prime-inc/
The job ad is no longer active
Job unpublished on
1 April 2021
Look at the current jobs Security Kyiv→
Average salary range of similar jobs in
analytics β
Similar jobs
Information Security Engineer at lifecell Ukraine
Ukraine
Senior Vulnerability Researcher at SevenPro
Ukraine
Windows Security Engineer at TemaBit Fozzy Group
Ukraine
All jobs Security Kyiv All jobs SOC Prime