SOC Security Specialist
Warsaw, Poland
EcoVadis
Confidently manage value chain risk & compliance, build performance for net-zero & sustainability targets, drive value & impact: The universal sustainability ratings & intelligence suite.Company Description
Work smart, have fun and make an impact!
EcoVadis is the leading provider of business sustainability ratings.
Our solutions are backed by an international team of experts and powerful technology. We analyze data and build sustainability scorecards that give companies actionable insights into their environmental, social and ethical risks.
Why apply to EcoVadis?
Be a part of the global sustainability change in business. Grow your career. Work with extraordinary people. Feel valued for your contribution.
Learn more about our team and culture on EcoVadis careers page
If you have questions about the company or open roles you can Chat with an insider
Job Description
Our IT Security team is looking for a SOC Security Specialist to assist and support within a fast-growing team. You will be responsible for the correct delivery of security operations services, ensuring the harmonization with business strategic goals.
As the SOC Security Specialist, you will become the main point of contact and technical coordinator for Crisis Response, helping with the definition and maintenance of our plans and procedures. Also, your knowledge and willingness to learn on new security trends and technologies will be of great value to our company, while identifying efficiency and automation opportunities.
This role, reporting directly to the IT Security Director, will include the following responsibilities:
- Plan, direct and control the Security Operations Center (SOC) global functions and operations;
- Ensure 24x7 monitoring, detection and analysis of incidents to protect EcoVadis, addressing all security incidents, ensuring timely escalation, and tracking adequate remediation;
- Manage cyber-intelligence capabilities to identify and proactively protect the company against potential threats, brand abuses and risks;
- Lead and manage SOC providers and services, while ensuring proper prioritization, alignment and coordination with internal stakeholders;
- Responsible for security event monitoring, detecting, alerting and responding, as well as becoming the primary Incident Response Coordinator;
- Ensure there are adequate monitoring and detection mechanisms, and test and update the quality of these protective measures wherever necessary;
- Revise and develop documentation and processes to strengthen the SOC function, to facilitate the integration with other business units;
- Create policies, standards and a service catalog pertaining to our SOC services;
- Establish security guidelines and improvements for our security operations, in collaboration with network operations (ZTNA, SWG, DLP,...);
- Control the use of resources and execute corrective actions where applicable;
- Ensure daily management, administration & maintenance of security devices to achieve operational effectiveness;
- Create reports, dashboards and metrics for SOC services, with multiple target audiences (technical and non-technical) and presentation when needed;
- Maintain our Incident and Crisis Response Plans, create and update playbooks and procedures, and conduct tabletop simulations with stakeholders;
- Ensuring threat management, threat modeling, identify threat vectors and develop use cases for security monitoring, in coordination with all SOC services;
- Be a leader in the expansion, innovation and growth of the SOC;
- Advocate for continuous improvement and automation wherever possible;
- Assist with other organization security projects and tasks as required.
Qualifications
- 3+ years of experience in a similar role, with emphasis on security operations, incident management, intrusion analysis;
- Minimum Bachelor of Science degree in Computer Science, Computer Engineering, or a related technical field;
- Professional certifications (e.g. SANS GIAC / GCIH);
- Hands-on experience in SOC definition and strategy;
- Advanced knowledge of:
- Security Incident and Event Monitoring (SIEM);
- Behavior analysis (UEBA);
- EndPoint security (EDR);
- Network security (NDR);
- Threat Intelligence (CTI);
- Threat Hunting (TH);
- Security Service Edge (SSE);
- Web Content Filtering (SWG);
- Identity protection (IAM / PAM);
- In-depth familiarity with security policies, industry standards and best practices;
- Thorough knowledge of Microsoft Azure security solutions (e.g. Sentinel);
- Experience in designing and building security operations centers;
- Incident management process development and/or incident management experience;
- Experience with SOC automation development and cloud operations’ monitoring;
- Ability to lead and communicate efficiently within a team environment;
- Ability to conduct research about areas unknown to him/her, and use that knowledge to deliver security guidelines and propose improvements;
- Open to work in an international, multilingual environment;
- Proficient in English (oral and written);
- Hands-on experience with Google Workspace is a plus.
Additional Information
Location: Warsaw/remote from Poland
Start date: ASAP
Contract: B2B or CoE
Everyone at EcoVadis contributes to a culture of trust, respect and empowerment. Our growing team in Poland is full of talented professionals from various fields who all share a desire to change the world.
We offer competitive salaries and support personal growth from day one with extensive onboarding, mentoring and a brand new e-learning platform bursting with courses and modules so you can learn new skills and fine-tune old ones.
Our team enjoys the benefits of flexible working. Some of us work from home and some prefer to work from our easily accessible (metro, tram, bus, bike, suburban train) office hub in the heart of Warsaw. We have regular onsite and online team breakfasts. Our CSR team coordinates events where we can give back to local communities and ecosystems. At the office you can chill in break areas, enjoy a panorama of Warsaw or visit our lovely terrace.
EcoVadis will support you with all the necessary office equipment, holidays in line with Polish labor law, optional (fully covered or co-financed) health care and life insurance, Multisport card, French or Polish classes as well as a lunch card. Everyone at EcoVadis can also use a community service day when volunteering.
Please, share with us your English CV and we can guarantee a response to every application. A new job with purpose awaits you!
Don’t fit all the criteria but still think you’d be a good candidate? Please apply anyway to give our hiring team the opportunity to assess your skills and to learn more about what you could bring to EcoVadis. We’re interested in hiring capable people, regardless of professional and educational background.
Can the hiring process be adjusted to suit my needs? Yes. We want everyone going through the hiring process with EcoVadis to feel confident that you are able to demonstrate your full potential. We welcome applications from disabled people, people with long-term health conditions and neurodiverse candidates. If you need any adjustments, please let the hiring team know.
Our team’s strength comes from everyone’s uniqueness and is founded upon mutual respect. EcoVadis commits to equity, inclusion and reducing bias in our hiring processes. EcoVadis does not accept any form of discrimination based on color, national or ethnic origin, ancestry, citizenship, religion, beliefs, age, sex, gender identity, sexual orientation, neurodiversity, disability, parental status, or any other protected characteristic that makes you unique. In your application, we encourage you to remove personal information such as: photographs, marital status, number of children, religion, gender, residential postal code, university graduation date, past medical or parental leave(s) taken, nationality (instead, please state if you are legally eligible to work in the job region/country), university name (instead, please state any degrees obtained and the study major).
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Automation Azure Cloud Computer Science EDR Endpoint security GCIH GIAC IAM Incident response Monitoring Network security SANS SIEM SOC Strategy Threat intelligence ZTNA
Perks/benefits: Career development Flex hours Gear Health care Insurance Medical leave Parental leave Startup environment Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Cyber Security Engineer jobs
- Open Product Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Analyst jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open IT Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open IT Security Engineer jobs
- Open Senior Cyber Security Specialist jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open SaaS-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open Security Clearance-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open CI/CD-related jobs