Cyber Defence Expert - Incident Response
Istanbul, TR
Vodafone
Vodafone is a leading technology communications company in Europe and Africa, keeping society connected and building a digital future. Find out more!What you’ll do
• Having a strong security analyst mindset and using best practice knowledge from an attackers point of view to detect, identify and respond to cyber events, known and unknown threats, security risks and vulnerabilities with effective management of response plans, across the security platform lifecycle in line with cyber security policies and procedures,
• Continuous log review for several types of assets and actions (active directory, database, applications, network, OS, user behavior etc.) in accordance with requirements defined by the governance team and required standards / regulations like PCI-DSS, ISO27001, KVKK, GDPR, SOX etc.
• Strong hands on experience and technical knowledge on at least one of these tools / activities; EDR, NDR, SOAR, UEBA, SIEM, sandboxes, malware / forensic analysis, threat hunting and vulnerability scanning,
• Becoming an active contributor to SIEM and SOAR systems’ content development, security orchestration and playbook implementation processes to improve overall cyber defence center detection and incident response capability,
• Strong understanding skills & technical abilities regarding MITRE attack framework ATT&CK®,
• Integration of threat intelligence sources with SIEM and evaluation of alerts,
• Continuous attack simulation studies and defining new rules /correlations related with the output,
• Attending internal and external audits and preparing evidence when required,
• Effective reporting of log review and incident management activities on both executive and technical level.
• Having at least one of these certifications will be a plus; Security+, ECIH, GCDA, GDAT, CCNA, CCNP, CISSP.
Who you are
• BSc. in Computer / Industrial / Electrical & Electronics Engineering is desired,
• Master’s degree (preferably in Computer Science & Cyber Security) or equivalent information security experience is desired,
• At least 4 years hands on experience in information security, network administration,
• Experience working in complex operational ICT environments,
• Solid knowledge of security principles and practices,
• Proven experience in the following topics are desired:
- Firewall and intrusion detection/prevention protocols,
- DLP, anti-virus, anti-malware EDR solutions,
- Sandboxing and Malware analysis
- DFIR concepts
- TCP/IP, computer networking, routing and switching,
- Windows, UNIX and Linux operating systems,
- Network protocols and packet analysis,
- Python, Go, Bash or any other programming/scripting language knowledge
- Cloud computing,
- SaaS models,
- Security Information and Event Management (SIEM)
• Excellent problem-solving and analytical skills
• Critical thinking with strong attention to details and follow up
• Technically competent to contribute towards the preparation and implementation of control processes, procedures and guidelines
• Advanced in English
Not a perfect fit?
Worried that you don’t meet all the desired criteria exactly? At Vodafone we are passionate about Inclusion for All and creating a workplace where everyone can thrive, whatever their personal or professional background. If you’re excited about this role but your experience doesn’t align exactly with every part of the job description, we encourage you to apply as you may be the right candidate for this role or another role, and our recruitment team can help you see how your skills fit in.
What's in it for you
We like to keep them flexible:
• Vflexy: Flexible Benefits Program
• Hybrid working kit
• Ergonomic kit allowance
• Digital meal voucher
• Flexible transportation allowance.
• Employee assistance hotline & counselling
• Comprehensive and flexible private health insurance
• Discounted price deals for wide range of products & services
Plus, plenty more to enjoy!
#LI-Hybrid
Data Privacy
By applying for this job, you accept the Vodafone Privacy Policy. Please visit Privacy Policy web page at https://careers.vodafone.com/privacy-policy/turkey/ for further details.
Who we are
You may have already heard of Vodafone - We're a leading Telecommunications company in Europe and Africa. But what you might not know is that we are continuously investing in new technologies to improve the lives of millions of customers, businesses and people around the world, creating a better future for everyone.
As part of our global family, whether that's Vodafone, Vodacom or _VOIS, you'll feel a sense of pride and purpose as you contribute to our culture of innovation. We pursue equality of opportunity and inclusion for all candidates through our employment policies and practices. We recognise and celebrate the importance of diversity and inclusivity in our workspace and we do not tolerate any form of discrimination especially related to but not limited to race, colour, age, veteran status, gender identification, sexual orientation, pregnancy, ethnicity, disability, religion, political affiliation, trade union membership, nationality, indigenous status, medical condition, HIV status, social origin, cultural background, social, or marital status.
Together we can.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Active Directory Audits Bash CCNP CISSP Cloud Computer Science DFIR EDR Firewalls Forensics GDPR Governance Incident response Industrial Intrusion detection ISO 27001 Linux Malware Privacy Python SaaS Scripting SIEM SOAR SOX TCP/IP Threat intelligence UNIX Vulnerabilities Windows
Perks/benefits: Career development Flex hours Health care Insurance Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Product Security Engineer jobs
- Open Cloud Security Architect jobs
- Open Security Operations Engineer jobs
- Open Information Security Specialist jobs
- Open Information Security Officer jobs
- Open Principal Security Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Network Security Engineer jobs
- Open Security Consultant jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Analyst jobs
- Open Security Operations Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Manager Pentest H/F jobs
- Open Information System Security Officer jobs
- Open Senior Information Security Engineer jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open SOC-related jobs
- Open Network security-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open Threat intelligence-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs
- Open Security Clearance-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open Security assessment-related jobs
- Open SaaS-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Java-related jobs
- Open DevSecOps-related jobs