We have partnered with a global leader in cutting-edge flooring solutions, and sports surfaces for all market segments.
Due to their further development, we are seeking a motivated cybersecurity engineer to join their team in Novi Sad.
Responsibilities:
- Identify security events in real-time, analyze and qualify them
- Evaluate the severity of security incidents
- Notify security incidents, and escalate if necessary
- Transmit the action plans to the entities in charge of the treatment and provide support regarding the corrective or palliative measures to be implemented
- Make recommendations on immediate measures
- Accompany the processing of incidents by the investigation teams
- Contribute to the implementation of the detection service (SIEM, etc.)
- Contribute to the definition of the event log collection strategy
- Collaborate in the continuous improvement of procedures; build procedures for new types of incidents
- Contribute to the permanent monitoring of threats, vulnerabilities and attack methods in order to enrich event correlation rules
- Contribution to vulnerability management and incident response, and act as support during Cyber incident response
- Perform advanced investigations and threat analysis of Cybersecurity incidents
- Complete the dashboards reporting on the operational activity, Prepare and provide regular reporting on SOC (external and internal) activities and KPIs
- Maintain up-to-date documentation
- Perform Threat hunting activities
- Ensure implementation of baseline system security according to company policies.
- Identify and drive service improvement opportunities
Technical skills:
- Cyber defense; the practice of log analysis (system or application); the practice of network flow analysis; knowledge of event log correlation tools and methods (SIEM); knowledge of security supervision solutions; knowledge of attack and intrusion techniques; knowledge of the environment
- Hands-on experience in security systems including firewalls (including reviewing and maintaining firewall rules), intrusion detection systems, anti-virus software, authentication systems, log management, content filtering, etc.
- Very good understanding of security industry standards and best practices.
Nice to have:
- 3+ years of relevant experience in operations technology jobs
- Good experience in implementation and automating security controls and threat protection, managing identity and access in cloud and on-premises environments, network security architecture concepts (topology, protocols, components, firewalls, demilitarized zones, and segmentation)
- Detailed technical knowledge of operating system (Windows and Linux) security
- Familiarity with web-related technologies (Web applications, Web Services, Service Oriented Architectures) and of network/web-related protocols
- Hands-on experience in security systems, including firewalls (including reviewing and maintaining firewall rules), intrusion detection systems, anti-virus software, authentication systems, log management, content filtering, etc.
- Very good understanding of security industry standards and best practices
- Operating system security; Network and protocol security
- Cyber defense: practice of log analysis (system or application); practice of network flow analysis; knowledge of event log correlation tools and methods (SIEM); knowledge of security supervision solutions; knowledge of attack and intrusion techniques; knowledge of environment vulnerabilities
- Scripting skills
- Ability to work in a team, good communication skills
- Self-sufficient and fully accountable for the activities under his/her responsibility
Only shortlisted candidates will be considered.