Security Analyst

Security Analyst

SoftOne Technologies is a premier technology Group in the fields of Software Development, Cloud Services & Applications, Business & Artificial Intelligence Solutions in Greece and Southeastern Europe. Our Group combines innovation, research, development and state of the art information technology engineering and operates in the crossroads of business and technology. We deliver excellent services to our entrusted clients and partners and assist them in meeting their needs and objectives and improving their performance.

SoftOne is looking for an experienced Security Analyst to join our team.

Your Day will Look Like:

• Monitor and assess vulnerabilities, threats and consequent risk to the infrastructure and services, remediating, and mitigating vulnerabilities in cooperation with other departments
• Remain current on known and emerging threats and vulnerabilities, assessing risk and coordinating with other departments to manage these as directed by the CISO
• Ensure that key information security risks are identified and considered within the CISO’s cyber strategy with the Security Team and other departments
• Daily operational monitoring and escalation of information security events and assist in examining security events for context, risk, and criticality
• Perform forensic investigation and root cause analysis to mitigate negative impacts of incidents and reduce risk of recurrence
• Work to proactively improve the security posture of all infrastructure, software, services, staff and third parties and help support good governance, risk management and compliance
• Assist with ongoing compliance internal and third-party audits (including penetration tests, ISO audits, etc.)
• Provide security guidance and support to departments to apply the principles of Secure by Design and Privacy by Design for new and existing projects
• Engage with software development teams and project teams representing Information Security
• Document work done, processes and procedures and contribute to the knowledge base

Your Qualifications & Skills:

• Proven professional experience (6+ years) in Information Security including some experience as a security analyst or pen tester.

• BSc or postgraduate degree in Computer Science, Cyber Security, or related fields
• Hands-on experience with vulnerability management tools and strong technical knowledge in assessing vulnerabilities in multiple operating systems, databases, and application servers.
• Experience in Information Security with focus on Incident Response, Security Engineering, and/or Intrusion Detection (Blue team)
• Excellent English oral and written skills.
• A solid understanding/knowledge of cloud infrastructure and services (Azure in particular)
• Knowledgeable on current cyber-attacks and techniques, tactics & procedures used by adversaries. A knack of finding weaknesses/vulnerabilities in infrastructure/software/services.
• Excellent problem-solving skills combined with hands-on experience doing root cause analysis and post incident reviews.
• Strong ethics, integrity and honesty are absolutely required.

Desirable:

• Knowledge and experience of advanced security solutions such as NGFW, WAF, NAC, IDS/IPS, Privilege Access Management, Vulnerability Management, SIEM, EDR/XDR, AV.
• Azure and Microsoft 365 security implementations, compliance monitoring.
• Experience in other fields of information technology such as (secure) software development, systems integration or operation and maintenance is an advantage.

Your Benefits:

We are growing our team with the vision of attracting and developing talented professionals who will contribute to the growth of the company. As a result, we offer:

💰 Competitive remuneration package

❤️ Private health insurance plan

🏠 Hybrid working model

💯 Opportunity to work alongside experienced people who are always eager to mentor

📖 Funded training & development opportunities