• hands-on experience with SIEM systems / Incident Management & Automation systems • experience in Incident response • experience in ongoing maintenance and improvement of systems • good English communication skills (both speaking and writing)
Responsibilities:
• operational management, analysis and investigation of security incidents • build up and improve real-time security monitoring and incident response framework and playbooks • provides analysis and trending of security log data from a large number of heterogeneous security devices and critical environments • investigate, document and report on information security issues and emerging trends • provide Incident Response (IR) investigation, support and triage to security alerts
Required skills:
• Microsoft 365 Security: > Microsoft 365 Defender > Microsoft Defender for Identity > Defender for Office 365 > Microsoft Defender for Endpoint > Azure Defender > Microsoft Cloud App Security > Azure Sentinel (preferable) or other SIEM technology
Will be plus:
• Experience with Azure Sentinel • Certifications: • Microsoft Certified: Azure Security Engineer • Microsoft Certified: Security Operations Analyst
About KSTT
KSTT is a hi-tech product company and a major service development center in the sphere of global dealing. KSTT offers a one-stop-shop-solution without the one-product- fits-all mentality. Our key business areas are CRM (Customer Relationship Management) system development for global dealing platforms supported in over 20 languages.