SOC Analyst (Microsoft Azure Sentinel)

About us:

AIOPSGROUP, a valantic company, is a multidisciplinary digital competency center that builds extensive e-commerce expertise and a track record of successfully delivered projects. We provide specialized services at the intersection of e-commerce, data, and technology. Our portfolio includes Consulting, Customer Acquisition & Retention, Commerce Implementation, CX Monitoring, and 24/7 Support Services. We are committed to helping global enterprise clients achieve sustainable digital growth, while maintaining strong client relationships and delivering meaningful results.

valantic is a leading provider of digital transformation services and one of the most dynamic companies in the fields of digital solutions, consulting, and software. The company is trusted by numerous major brands and internationally recognized organizations. With its unique structure of divisions, competence centers, and expert teams, valantic offers solutions tailored precisely to the digitalization needs of modern businesses—from strategy to implementation.

What Are You Going to Do?

We are looking for a Staff Security Operations Analyst to join our Security team. In this role, you will be responsible for managing internal Corporate Security posture, monitoring security anomalies, building additional detections and visibility mechanisms, and ensuring the overall security of our internal systems. You will work closely with various teams to support audits, optimize visibility, and handle security incidents as they arise.

Please note that this role operates on a shift basis, providing 24/7 coverage across rotating shifts.

Main Responsibilities:

• Operate in a fast-paced SOC environment, either as part of a team or independently, to Analyze alerts and log data promptly and effectively. Assess the severity and impact of potential threats to accurately prioritize alerts and incidents.
• Monitor and analyze security information and event management (SIEM) tools and other security monitoring systems to identify potential security incidents and anomalies.
• Conduct in-depth analysis of security events, collaborating directly with customers to escalate and thoroughly investigate incidents. This involves understanding the scope, impact, and root cause of incidents to tailor the response effectively.
• Execute swift containment and remediation measures for identified security incidents, employing predefined response strategies to isolate affected systems and prevent further compromise.
• Proactively participate in the creation and enhancement of processes and procedures such as Security Playbooks.
• Refine and optimize analytical rules within the SIEM platform to reduce false positive alerts, enhancing the accuracy and efficiency of threat detection.
• Assist in vulnerability assessments and penetration testing activities. Evaluate and prioritise identified vulnerabilities for remediation by collaborating directly with customers.
• Maintain accurate records of incidents, investigations, and security-related activities within the incident management platform.
• Create detailed reports on security incidents, response actions taken, and recommendations for improvement.
• Research new concepts and present them to the internal team as well as customers.

What Do We Expect?

• Excellent English written and verbal communication skills.
• Previous hands-on experience performing SOC-related duties in an operational security environment.
• Security monitoring experience with one or more SIEM technologies, preferably Microsoft Sentinel.
• Knowledge of EDR solutions including Microsoft Defender
• Basic understanding of Windows, Linux and cloud technologies including Microsoft Azure and Office365.
• Good understanding of security solutions including SIEMs, Web Proxies, Anti-Virus, Firewalls, VPN, authentication providers and mechanisms, encryption, IPS/IDS.
• Basic understanding of networking principles including TCP/IP, WANs, LANs, and commonly used Internet protocols.
  
• SC-200 Microsoft Security Operations Analyst

Nice to have (big advantage):

• AZ-500 Microsoft Azure Security Technologies
• CompTIA Security+ SY0-601 
• Certified Ethical Hacker (CEH) 
• GIAC Security Essentials (GSEC) 
  

Why Join Us?

• Competitive remunerations and benefits package
• Opportunity to grow your career and get exposure to international brands, working on complex multi-technology projects
• Friendly, yet competitive work environment where everyone’s success is celebrated
• Flexible working hours/working location