Specialist SOC Threat Expert Lead

Would you like to be part of our new adventure? Vodafone Group is launching its new technological HUB (MSH), an international center of excellence dedicated to research and development of technical solutions, such as Secure Networks, 5G and 6G development, Open RAN, IoT, MPN & MEC and UCC for Vodafone Business, platforms and enterprise solutions.

Come and join us to create the future together!

The Cybersecurity Threat Expert is a highly skilled specialist, that will manage core and advanced SOC services, modular security services and advisory and security consultancy services of the Vodafone Business Central Security Operations Centre (VB Central SOC). He/she will give efficient, innovative and leading-edge security guidance and provide key input to operate, evolve and scale the VB Central SOC security services. He/she will be part of a team of engineering experts and Tier-3 security specialists responsible for continuity and availability of the VB Central SOC key platform components, maintaining the infrastructure according to best practices and keeping it up to date against potential future cyber threats and will be in charge of the following responsibilities:

• Set up and deliver core SOC services in the Vodafone Business Central SOC, collaborating with L1/L2 Central SOC teams and other SOCs.
• Deploy, configure, and maintain security tools and platforms (SIEM, SOAR, DLP, NG Firewalls, IPS, WAF, EDR/XDR).
• Define and improve cybersecurity processes, ensuring timely enhancements.
• Develop threat lifecycle tools and best practices for threat detection, analysis, and incident response.
• Use threat intelligence services and malware sandboxes for advanced threat hunting.
• Manage and maintain internal SOC operations.

What you bring

• Bachelor’s Degree in engineering departments (preferably Electronics or Computer Engineering)
• 3+ years in security engineering, consulting, penetration testing, red teaming, and vulnerability assessments in complex ICT environments.
• Strong understanding of attacker tools, tactics, and techniques, with knowledge of MITRE ATT&CK and MITRE Shield.
• Proficient in SIEM (QRadar, Splunk, Sentinel, Chronicle, McAfee, CryptoSIM, Logsign) and SOAR products.
• Experience with threat modeling (STRIDE, PASTA, FAIR, Security Cards), operational threat intelligence, and attack frameworks (MITRE ATT&CK, Cyber Kill Chain).
• Proficient in scripting/programming languages (Java, Bash, Python, PowerShell).
• Experience with security technologies like Firewalls, IDS, IPS, and VPC.
• CISSP, CISM, OSCP or CEH level is expected.

Not a perfect fit?

Worried that you don’t meet all the desired criteria exactly? At Vodafone we are passionate aboutInclusion for All and creating a workplace where everyone can thrive, whatever their personal or professionalbackground. If you’re excited about this role but your experience doesn’t align exactly with every part of thejob description, we encourage you to apply as you may be the right candidate for this role or another role, andour recruitment team can help you see how your skills fit in.

Together we can

At Vodafone, we are dedicated to fostering a diverse and inclusive work environment. We take pride in our commitment to providing equal opportunities to individuals of all backgrounds and abilities. We firmly believe that diversity includes a spectrum of experiences, and we welcome and support individuals with functional diversity.

Our mission is to create an accessible workplace where all team members can thrive, regardless of their unique abilities or challenges. We are committed to making reasonable accommodations to ensure that everyone can fully participate and excel in our organization. We value the unique perspectives and talents that individuals with functional diversity bring to our team and consider them an integral part of our success and innovation.

We recognize and celebrate the importance of diversity and inclusivity in our workplace so that we are as diverse as the customers and communities we serve. We do not tolerate any form of discrimination especially related to but not limited to race, colour, age, veteran status, gender identification, sexual orientation, pregnancy, ethnicity, disability, religion, political affiliation, trade union membership, nationality, indigenous status, medical condition, HIV status, social origin, cultural background, social or marital status.

Benefits

• Hybrid working.
• Direct Contract with Vodafone VOIS.
• Ticket Restaurants.
• Intensive Summer Hours (8:00 am-3:00 pm).
• Social benefits.
• Flexible retribution plan.
• Training plan.
• 25 days of vacation + December 24 and 31.

#LiHybrid
REF: 242948