Senior Security Operations Engineer

About the job
The Senior Security Operations Engineer at Avrioc Technologies will play a critical role in developing and maintaining security operations to protect the organization’s information systems. This position requires a thorough understanding of cybersecurity practices, as well as extensive hands-on experience with security tools and frameworks. The ideal candidate will have a proven track record in incident response, security monitoring, and vulnerability management, alongside proficiency in various cybersecurity technologies.

Responsibilities & Authorities

• Manage and optimize security solutions including Wazuh SIEM, PAM, and DAM platforms.
• Monitor, analyze, and manage security alerts from various tools and systems, including SIEM, PAM, and DAM.
• Apply the MITRE ATT&CK framework to counter cyber adversary tactics.
• Develop security detection rules, parsers, and establish efficient SIEM data pipelines.
• Deploy and maintain SOAR platforms to automate operations and enhance incident response workflows.
• Lead the development and execution of incident response plans for effective incident resolution.
• Continuously monitor security alerts, assess, prioritize, and manage them to mitigate security risks.
• Collaborate with cross-functional teams to track and resolve security incidents and recommend process improvements.
• Manage antivirus/malware detection and protection solutions to defend against threats.
• Analyze and triage security incidents, providing impactful recommendations.
• Operate security logging and event correlation from cloud and on-premises data sources.
• Understand and implement DevSecOps practices, Patch Management, API Security, Threat Modeling, and Security Auditing.
• Communicate effectively with multiple teams and stakeholders, showcasing strong verbal and written skills.
• Utilize project management and collaboration tools such as Jira and Confluence.
• Familiarize oneself with compliance requirements and controls for standards like SOC2, ISO, PCI-DSS, and GDPR.

Qualifications

• Bachelor's or master's degree in Cybersecurity, Computer Science, Information Technology, or a related field (or equivalent work experience).
• Minimum 8+ years of experience in a Cybersecurity Engineer or similar role, with hands-on experience in cybersecurity tools and practices outlined in the responsibilities.
• Certification in relevant technologies is preferred.
• Demonstrated problem-solving skills with a detail-oriented mindset.

Common Responsibilities

• Comply with the organization's information security and information service management policies and procedures.
• Maintain confidentiality and integrity of information, attending mandatory security training sessions.
• Report information security incidents through established channels.

Avrioc Technologies is committed to fostering a dynamic and nurturing work environment, building a culture of innovation, collaboration, and continuous learning. Join our team to explore opportunities where your skills can truly shine.