Senior Security Operation Center Analyst

• Incident response and investigations

• analysis of complex security and financial incidents;
• rapid decision-making during live incidents.
• Detection and monitoring

• Use SIEM tools to maintain visibility into real-work attack patterns
• Continue development and tuning of dashboards and alerts.
• Attack mitigation and abuse prevention

• Use tools and services to prevent external attacks like SMS pumping, account take over etc.
• Continue improving or creating new anti-fraud tools or services
• Brand protection

• detection and response to phishing, fake domains, and brand abuse.
• Vulnerability management support

• Performing continuous risk analysis and mitigating risks of cloud infrastructure as well as on-premise DC
• Automation and pipelines

• building and maintaining SOC integrations to reduce manual workload.
• Support for internal documentation (standards, manuals, descriptions, etc.)
• Collaborate with application architects in questions of cyber security requirements and possible solutions
• Implementation of automated cyber security measures (rolling secrets, analysis of security audit logs, ...)

• 5+ years of experience in security analytics
• Solid knowledge in cyber security
• Excellent analyzing skills based on security audit data, as well as good insights output.
• Experience to design and develop anti-fraud services based on the output from security analysis.
• Know how to explore and investigate issues with logging frameworks like opensearch, splunk, loki etc.
• Experience and skills in Linux, GCP Cloud, Networking and OS fundamentals
• Know how to mitigate security threats by using tools like Akamai rules etc.
• Knowledge of managing exploiting vulnerabilities of servers using Qualys or similar tools.
• Ability to thrive under stressful situations
• Ability to work with several tasks at the same time
• Team player with energy and a desire to progress in a fast moving, demanding and progressive environment
• Fluent oral English

Zeal Group