Security Operations Center Analyst
Sofia, Sofia City Province, Bulgaria
We are TINQIN. TINQIN is a company focused on developing and delivering a wide range of innovative solutions mainly for the insurance industry. Our clients are some of the largest insurance companies operating on the European market. They rely on us for developing software, web design, business analysis, prototyping, product testing, and maintenance. That’s why we always aim to be at the top of our game while using the latest technologies to provide added value.
Day to day activities and responsibilities:
- React to security alerts and security events from the SIEM, IDS, Endpoint protection (AV/EDR) and other security related systems
- Actively participate in incident handling, incident investigations, forensics, evidence and sample collection;
- Perform detailed analysis of events during the security incident response process;
- Provide a containment strategy, mitigation and remediation plan to resolve a security issue;
- Proactive threat hunting – monitor for indicators for an undetected malware infection;
- Analyze SIEM data to detect cyber threats;
- Monitor the network for unusual events or trends;
- Inform the organization for any new high/critical vulnerabilities and exploits;
- Operating, using and defining detection use cases for the SIEM;
- Define custom IPS/IDS signatures;
- Prepare security reports for the security dashboards.
Requirements
- Minimum of 2 years of relevant SOC experience or endpoint security experience
- 1 year of relevant hands-on working experience with SIEM solutions
- Experience with open source SIEM solutions such as OSSIM, Wazuh, ELK Experience of handling security incidents such as web application attacks, phishing, vendor supply chain incidents, malware and ransomware, emergency vulnerability management and compromised accounts;
- Knowledge of security technologies such AV, EDR, IDS/IPS, content filtering, application security, vulnerability and risk management
- Ability to manage security incidents by understanding common attack techniques, vectors and tools as well as defending against and/or responding to such attacks when they occur;
- Good command of English language, both written and spoken;
- Analytical thinking and problem-solving skills;
- Good communication skills;
- High degree of initiative and ability to work with little supervision;
- Enthusiastic about the security industry and driven to continue learning and developing new skills.
Benefits
- Competitive remuneration package;
- Dynamic and interesting work environment;
- Opportunity to use cutting-edge technologies in real projects;
- Collaboration with highly skilled and friendly colleagues;
- Opportunity to learn and enhance your skills;
- Additional corporate trainings, tech conferences tickets;
- Annual employees performance check and reevaluation;
- Team-building events;
- Participation in charity and volunteer activities;
- Life-work balance;
- Social benefits – a monthly budget that includes:
- Additional health insurance – Luxury package;
- “Health with priority” medical insurance covering severe diseases;
- Employee Assistance Program, including psychological, finance, and legal advice;
- Flexible social benefits (food vouchers, fuel vouchers, sport card, and other options);
- Extra days off for loyal employees (+1 additional day paid leave for each year of length of service in TINQIN (up to 5));
- Office perks (coffee, soft drinks, fresh fruits, ice cream, sports, and relaxation area);
- Remote/hybrid working model (employees can choose whether to work from the office or home);
- Flexible working hours;
- Referral program bonuses
If you believe that your profile meets the above requirements and you are interested in joining our team, please apply with your CV in English.
All applications will be treated with strict confidentiality. Only short listed candidates will be contacted.
The personal data you provide to us is processed by “TINQIN” AD ( acting as the Data Controller). This data is shared to and processed by the employees of TINQIN for the purposes of reviewing job applications, which is necessary in order to take steps prior into entering a contract with you.
The retention period for your data is 6 months unless you provide us with a consent to keep them longer. If you agree to store your data in our records longer than 6 months and to consider your CV for other openings as well, please fill the consent form: https://forms.office.com/e/CVZZmj9CzD?origin=lprLink
You have the right to obtain information about the processing of your personal data at any time.
More detailed information about the process can be found at Policy on the processing of personal data of job candidates - TINQIN » Insurance software solutions.
In addition, you have the right to correct, to block and to delete it in accordance with the legal regulations. To enforce your rights, you only need to contact our DPO : dpo@tinqin.com.
Remark: If you request to block or to delete your data, your application can no longer be considered.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security EDR ELK Endpoint security Exploits Finance Forensics IDS Incident response IPS Malware Open Source Prototyping Risk management SIEM SOC Strategy Vulnerabilities Vulnerability management
Perks/benefits: Career development Conferences Flex hours Flex vacation Health care Medical leave Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Penetration Tester jobs
- Open Cloud Security Architect jobs
- Open Security Operations Engineer jobs
- Open Principal Security Engineer jobs
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Cyber Security Architect jobs
- Open IT Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Network Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Security Consultant jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Security Operations Analyst jobs
- Open Manager Pentest H/F jobs
- Open Information Security Architect jobs
- Open Information System Security Officer jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open SOC-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open Vulnerability management-related jobs
- Open DoD-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open CEH-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open SaaS-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open Java-related jobs
- Open EDR-related jobs
- Open TS/SCI-related jobs