SOC Cyber Threat Expert

## Join Us At Vodafone, we’re not just shaping the future of connectivity for our customers – we’re shaping the future for everyone who joins our team. When you work with us, you’re part of a global mission to connect people, solve complex challenges, and create a sustainable and more inclusive world. If you want to grow your career whilst finding the perfect balance between work and life, Vodafone offers the opportunities to help you belong and make a real impact. ## What you’ll do • Coding Experience in Scripting & programming languages (such as Java, Bash, Python, PowerShell, etc.) to use these skills to aid in responding to incidents involving Windows, Linux, and Mac hosts, as well as automate common analytical processes to reduce analyst time and avoid repetitive incident response tasks, • Making assessments on Information Security processes and taking resposibility of implementing improvements on related systems, • Experience in Scrum is a plus • Deploy, configure, and maintain security technologies, including, EDR, XDR, SOAR, SIEM, solutions to assess each of the cybersecurity technology’s responses • Develop open-source and vendor based threat detection scenarios • Develop tooling for Detection Development Life-Cycle • Research on new threat hunting methodologies, tools, and technologies • Onboard and maintain detection and hunting products (SIEM, EDR, etc.) • Manage and maintain internal SOC technologies and processes • Effectively use threat intelligence services and malware sandboxes for hunting new malware threats • Experience working with security technology and products such as Firewalls, IDS, IPS, VPC, • Excellent written skills with demonstrated ability to write reports. Including the ability to discuss findings in a risk perspective with clear remediation advice specific to the client’s environment. ## Who you are • Bachelor’s Degree in engineering departments (preferably Electronics or Computer Engineering), • 5+ years of experience in performing hands-on security engineering, consulting, team management, penetration testing, and/or adversary simulation, red teaming exercises, vulnerability assessments in complex operational ICT environments, • Familiarity with industry standards like OWASP TOP10, CVSS, CIS, NIST etc. • Excellent understanding of attacker tools, tactics and techniques and referencing on MITRE ATT&CK, strong knowledge of MITRE Shield. • CISSP, CISM, OSCP, CEH level is expected. • Experienced in SIEM products (QRadar, FortiSIEM Splunk, Logsign etc.) and SOAR products. • Experience working with Threat modeling (e.g., STRIDE, PASTA, FAIR, Security Cards), operational threat intelligence, and attack framework standards (e.g., MITRE ATT&CK) with a good understanding of the Cyber Kill Chain and pervasive threat attack methods and remediation, • Experience working in an industry standard Security Operations Center or similar environment providing incident handling and response, intrusion detection, analysis, cyber threat intelligence, threat determination, and mitigations processing and tracking, working with several network and system security technologies to include Elasticsearch, data analytics platforms, endpoint tools, network technologies, and SIEMs • Experience developing detection logic for enterprise SIEM systems and with exploitation techniques and use case development • Experience in the detection and response to malicious activity using log data and alerts from cybersecurity solutions, systems, and network devices • Experience extracting and analyzing forensic artifacts across Windows, Mac, and Linux operating systems • Experience of incident response processes, and threat intelligence cycles, including understanding of IP network traffic, security vulnerabilities, different exploitation techniques, and malware behaviors (including communications protocols) • Understanding of Amazon Web Services cloud environments and their security controls, microservices architectures & distributed Platforms especially in the SaaS businesses, global frameworks and standards like NIST, ISO 27001/27002/27017/ 27018, GDPR, etc. ## Not a perfect fit? Worried that you don’t meet all the desired criteria exactly? At Vodafone we are passionate about empowering people and creating a workplace where everyone can thrive, whatever their personal or professional background. If you’re excited about this role but your experience doesn’t align exactly with every part of the job description, we encourage you to still apply as you may be the right candidate for this role or another opportunity. ## What's in it for you We like to keep them flexible: • Vflexy: Flexible Benefits Program • Hybrid working kit • Ergonomic kit allowance • Digital meal voucher • Flexible transportation allowance. • Employee assistance hotline & counselling • Comprehensive and flexible private health insurance • Discounted price deals for wide range of products & services Plus, plenty more to enjoy!If you want to know more about us and what we do, then visit our website: www.vodafone.com.tr https://www.vodafone.com.tr/insan-kaynaklari Instagram: https://www.instagram.com/vodafonekariyer/ Youtube: https://www.youtube.com/user/VFTurkiye Data Privacy By applying for this job, you accept the Vodafone Privacy Policy. Please visit Privacy Policy web page at https://careers.vodafone.com/privacy-policy/turkey/ for further details. ## Who we are We are a leading international Telco, serving millions of customers. At Vodafone, we believe that connectivity is a force for good. If we use it for the things that really matter, it can improve people's lives and the world around us. Through our technology we empower people, connecting everyone regardless of who they are or where they live and we protect the planet, whilst helping our customers do the same. Belonging at Vodafone isn't a concept; it's lived, breathed, and cultivated through everything we do. You'll be part of a global and diverse community, with many different minds, abilities, backgrounds and cultures. ;We're committed to increase diversity, ensure equal representation, and make Vodafone a place everyone feels safe, valued and included. If you require any reasonable adjustments or have an accessibility request as part of your recruitment journey, for example, extended time or breaks in between online assessments, please refer to https://careers.vodafone.com/application-adjustments/ for guidance. Together we can.