SOC Engineer

Role Overview

We are looking for a specialist to strengthen the Security Operations team and be responsible for developing monitoring, detection, and incident response processes for information security.

What You Will Do

Analyze, classify, and investigate security alerts, incidents, and suspicious activity, develop and optimize correlation rules, threat detection scenarios, dashboards, alerts, and reports in SIEM, and participate in PoC/Pilot SIEM solutions.

Why It Might Be a Fit

3+ years of experience in cybersecurity / SOC / Incident Response / Security Operations or related roles, practical experience with SIEM, and knowledge of modern attack methods and the MITRE ATT&CK framework.

Requirements

• Higher technical education or specialized courses in information security
• 3+ years of experience in cybersecurity / SOC / Incident Response / Security Operations or related roles
• Practical experience with SIEM: Microsoft Sentinel, Splunk, QRadar, ArcSight, Wazuh, Elastic, Logsign, or analogs
• Experience in setting up correlation rules, notifications, and dashboards
• Understanding of network protocols, Windows/Linux, Active Directory / Entra ID, cloud, and on-prem infrastructure
• Knowledge of modern attack methods and the MITRE ATT&CK framework
• Ability to document investigations, incidents, and recommendations qualitatively

Benefits

• Office or remote work
• Remote onboarding
• Performance bonuses
• Health and life insurance
• Wellbeing program and corporate psychologist
• Compensation for mobile communication expenses with Kyivstar

Originally posted on Himalayas