SOC Security Specialist
Warsaw, Poland
EcoVadis
Detailed insights to confidently manage value chain risk & compliance, build performance for net-zero & sustainability targets, drive value & impact: The universal sustainability ratings & intelligence suite.Company Description
Work smart, have fun and make an impact!
Our purpose is to guide all companies toward a sustainable world. EcoVadis is the leading provider of business sustainability ratings. Our solutions are backed by an international team of experts and powerful technology. We analyze data and build sustainability scorecards that give companies actionable insights into their environmental, social and ethical risks.
Why apply to EcoVadis?
Be a part of the global sustainability change in business. Grow your career. Work with extraordinary people. Feel valued for your contribution.
Learn more about our team and culture on EcoVadis careers page
If you have questions about the company or open roles you can Chat with an insider
Job Description
Our IT Security team is looking for a SOC Security Specialist to assist and support within a fast-growing company. You will be responsible for the correct alignment of our security needs within the security operations services, ensuring the harmonization with business strategic goals.
As the SOC Security Specialist, you will become the main point of contact and technical coordinator for Technical Crisis Response, helping with the definition and maintenance of our plans and procedures. Also, your knowledge and willingness to learn on new security trends and technologies will be of great value to our company, while identifying efficiency and automation opportunities.
This role, reporting directly to the IT Security Director, will include the following responsibilities:
- Plan, direct and control the Security Operations Center (SOC) global functions and operations;
- Ensure 24x7 monitoring, detection and analysis of incidents to protect EcoVadis, supervising that all security incidents are addressed, ensuring timely escalation, and tracking adequate remediation;
- Manage cyber-intelligence capabilities to identify and proactively protect the company against potential threats, brand abuses and risks;
- Understand SOC providers’ services, while ensuring proper prioritization, alignment and coordination with internal stakeholders;
- Responsible for security event monitoring, detecting, alerting and responding, as well as becoming the primary Security Incident Response Coordinator;
- Ensure there are adequate monitoring and detection mechanisms, challenge our providers’ security guidance, and test and update the quality of these protective measures on a regular basis;
- Revise and develop documentation and processes to strengthen the SOC function, to facilitate the integration with other business units;
- Create and maintain policies, standards and a service catalog pertaining to our SOC services, either autonomously or collaborating with the Network and Security Operations team;
- Establish security guidelines and improvements for our security operations, in collaboration with network operations (ZTNA, SWG, DLP,...);
- Become the primary point of contact for security needs within SASE operations;
- Conduct regular checks within our infrastructure to identify missing gaps in our detection capacity, and provide recommendations for improvement (e.g. Threat Hunting);
- Control the use of resources and execute corrective actions where applicable;
- Ensure daily management, administration & maintenance of security devices to achieve operational effectiveness;
- Create reports, dashboards and metrics for SOC services, with multiple target audiences (technical and non-technical) and presentations when needed;
- Maintain our Incident and Crisis Response Plans, create and update playbooks and procedures, and conduct tabletop simulations with stakeholders;
- Ensuring threat management, threat modeling, identify threat vectors and develop use cases for security monitoring, in coordination with all SOC services;
- Be a leader in the expansion, innovation and growth of the SOC;
- Advocate for continuous improvement and automation wherever possible;
- Assist with other organization security projects and tasks as required.
Qualifications
- 3+ years of experience in a similar role, with emphasis on security operations, incident management, intrusion analysis;
- Minimum Bachelor of Science degree in Computer Science, Computer Engineering, or a related technical field;
- Professional certifications (e.g. SANS GIAC / GCIH, Azure SC-200);
- Hands-on experience in SOC definition and strategy;
- Advanced knowledge of:
- Security Incident and Event Monitoring (SIEM);
- Behavior analysis (UEBA);
- EndPoint security (EDR);
- Network security (NDR);
- Threat Intelligence (CTI);
- Threat Hunting (TH);
- Security Service Edge (SSE);
- Web Content Filtering (SWG);
- Identity protection (IAM / PAM);
- In-depth familiarity with security policies, industry standards and best practices;
- Thorough knowledge of Microsoft Azure security solutions (e.g. Sentinel);
- Experience in designing and building security operations centers from scratch, and/or expanding their services;
- Incident management process development and incident management and coordination experience;
- Experience with SOC automation development and cloud operations’ monitoring;
- Ability to lead and communicate efficiently within a team environment;
- Ability to conduct research about areas unknown to him/her, and use that knowledge to deliver security guidelines and propose improvements;
- Open to work in an international, multilingual environment;
- Proficient in English (oral and written);
- Hands-on experience with Google Workspace is a plus.
Additional Information
Location: Warsaw/ remote from Poland
Start date: ASAP
Contract of Employment or B2B
Everyone at EcoVadis contributes to a culture of trust, respect and empowerment. Our growing team in Poland is full of talented professionals from various sectors who all share a desire to make an impact. We offer competitive salaries and support personal growth from day one with extensive onboarding, mentoring and a brand new e-learning platform bursting with courses and modules so you can learn new skills and fine-tune old ones.
Benefits:
- Support with all the necessary office and IT equipment
- Optional (fully covered or co-financed) health care and life insurance
- Multisport card and wellness allowance
- Multicafeteria Lunch card
- Annual performance bonus
- Flexible working hours
- Hybrid/ full remote work
- Remote work from abroad policy
- Internet and Electricity bill allowance
- CSR activities
- Modern, pet-friendly office in the city center (next to Rondo ONZ)
- Community service day when volunteering
Our hiring team looks forward to reviewing your CV, in English, with a guaranteed response to every application. A new job with purpose awaits you!
Don’t fit all the criteria but still think you’d be a good candidate? Please apply anyway to give our hiring team the opportunity to assess your skills and to learn more about what you could bring to EcoVadis. We’re interested in hiring capable people, regardless of professional and educational background.
Can the hiring process be adjusted to suit my needs? Yes. We want everyone going through the hiring process with EcoVadis to feel confident that you are able to demonstrate your full potential. We welcome applications from disabled people, people with long-term health conditions, and neurodiverse candidates. If you need any adjustments, including the provision of interview questions, please let the hiring team know.
Our team’s strength comes from everyone’s uniqueness and is founded upon mutual respect. EcoVadis commits to equity, inclusion and reducing bias in our hiring processes. EcoVadis does not accept any form of discrimination based on color, national or ethnic origin, ancestry, citizenship, religion, beliefs, age, sex, gender identity, sexual orientation, neurodiversity, disability, parental status, or any other protected characteristic that makes you unique. In your application, we encourage you to remove personal information such as: photographs, marital status, number of children, religion, gender, residential postal code, university graduation date, past medical or parental leave(s) taken, nationality (instead, please state if you are legally eligible to work in the job region/country), university name (instead, please state any degrees obtained and the study major).
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Automation Azure Cloud Computer Science EDR Endpoint security GCIH GIAC IAM Incident response Monitoring Network security SANS SASE SIEM SOC Strategy Threat intelligence ZTNA
Perks/benefits: Career development Flex hours Health care Insurance Lunch / meals Medical leave Parental leave Pet friendly Salary bonus Startup environment Team events Wellness
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Security Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open Windows-related jobs
- Open CISM-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open SaaS-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Forensics-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs