Cyber Security expert and SOC
SOC and Cyber Security Expert
Location: remote or Rome , Italy
Information SecurityReports To: SOC Manager / CISO
Job Summary:
We are seeking a skilled and experienced SOC and Cyber Security Expert to join our team. The ideal candidate will be responsible for monitoring, detecting, analyzing, and responding to security incidents within our Security Operations Center (SOC). You will play a key role in safeguarding the organization’s information assets and ensuring the ongoing security of our digital infrastructure. This role involves collaborating with IT teams to enhance overall security posture and responding to potential threats in real-time.
Key Responsibilities:
• Monitor and Analyze: Real-time monitoring of security events and logs across network, endpoints, and systems using security tools (SIEM, IDS/IPS, etc.). • Incident Response: Investigate and respond to security incidents and alerts, performing root cause analysis, and implementing countermeasures. • Threat Intelligence: Analyze emerging threats, vulnerabilities, and attack vectors, and proactively suggest mitigations. • Vulnerability Management: Conduct vulnerability assessments and work with teams to ensure timely remediation of identified risks. • Security Auditing: Review system and network configurations to ensure compliance with security policies and standards. • Collaboration: Work closely with other IT departments and external security partners to mitigate risks and improve overall cybersecurity practices. • Documentation and Reporting: Maintain detailed logs, reports, and documentation on security incidents, and provide recommendations to improve processes. • Continuous Improvement: Stay updated with the latest cybersecurity trends, tools, and best practices to enhance SOC operations. • Automation: Implement automation techniques in security monitoring and incident response to streamline workflows and improve efficiency.
Qualifications:
• Education: Bachelor’s degree in Computer Science, Information Security, or a related field (or equivalent experience). • Experience: 3+ years of experience in a SOC or similar role in cybersecurity. • Certifications: Relevant industry certifications such as CISSP, CISM, CEH, OSCP, or GIAC certifications are highly preferred. • Technical Skills: • Proficiency with SIEM platforms (e.g., Splunk, ArcSight, QRadar). • Strong understanding of network security, firewalls, intrusion detection/prevention systems. • Experience with endpoint security, vulnerability management, and forensic tools. • Familiarity with cloud security (AWS, Azure, Google Cloud) and container security. • Soft Skills: • Strong analytical and problem-solving skills. • Ability to work in a fast-paced, dynamic environment. • Excellent written and verbal communication skills.
Preferred Skills:
• Knowledge of threat hunting techniques and advanced persistent threats (APTs). • Familiarity with scripting and automation (e.g., Python, PowerShell). • Understanding of compliance and regulatory frameworks (e.g., GDPR, ISO 27001, NIST).
What We Offer:
• Competitive salary and benefits package. • Professional development and training opportunities. • A collaborative and innovative work environment.
Валах Тетяна