SOC Analyst (Tier 3)

Your new company

Company with a global reach in the field of food delivery, including services for hotels, restaurants, hospitals, etc., with extensive distribution channels and a warehouse.

Your new role

Cyber Security Analyst is responsible for the real-time identification and alerting of information security events that pose an immediate risk to company's employees, customers, suppliers, shareholders, partners, or business operations.

Your responsibilities

• Configuring and Maintaining Security Solutions: Set up and manage monitoring, correlation, and alerting systems to identify relevant security issues.
• Incident Correlation and Response: Correlate events across systems and networks to detect potential security incidents and initiate incident response.
• SIEM Configuration: Configure security solutions to report critical events through the implemented SIEM solution.
• False Positive Minimisation: Maintain the SIEM solution to identify and alert on security events while minimising false positives.
• Investigations and DLP Maintenance: Contribute to investigations and maintaining Data Loss Prevention (DLP) solutions.
• Intrusion Detection and Prevention: Assist in configuring host and network-based intrusion detection and prevention systems.
• Monitoring Dashboards: Create and maintain security monitoring dashboards for real-time and extended visibility.
• Security Solution Deployment: Deploy security agents to monitor and report security events within the environment.
• Process Documentation and Escalation: Document team processes and serve as an escalation point for security incidents.
• Review and Selection of Security Solutions: Participate in evaluating and choosing Information Security solutions.
• Engaging Service Providers: Collaborate with service providers to address security issues related to their managed systems and infrastructure.
• Monthly Reports: Contribute to compiling monthly issue and trend reports for Enterprise Security & Support management.
• Risk Mitigation: Propose environment changes to reduce vulnerabilities and prevent potential incidents.
• Process Documentation and Maintenance: Assist in documenting and maintaining team processes.
• Ticketing Solution Enhancement: Contribute to designing and implementing improvements for monitoring, alerting, and incident management.
• Process Improvements: Suggest and implement process enhancements based on lessons learnt.
• Custom Scripting: Design and building custom scripts for logging and alerting.
• Additional Tasks: Performing other Enterprise Security & Support duties as needed.
• Escalation Point: Serve as an escalation point for security-related incidents.

What you'll need to succeed

• Experience with managing SIEM solutions
• Strong understanding of how attacks are performed against a system or network, and how to detect such attacks
• Advanced analytical skills
• Able to remain calm and diplomatic in high stress situations
• Able to track and manage a large number of simultaneous activities, as well as cross-team dependent activities
• Able to work collaboratively with minimal supervision
• Effectively escalates items as required, and can influence decisions and actions without direct authority
• Able to learn new technologies and processes quickly
• Able to quickly adapt to changes in timelines and sequences
• Able to work off hours when required
• Documenting workpapers as evidence of control success or deficiency
• Strong verbal and written communication skills
• CISSP, CEH, GIAC certification preferred

Working Hours

• 8am - 6pm local time- 4 days per week

• Hybrid working model (office 2x/week) in Kraków

What you need to do now

If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now.

Hays Poland sp. z o.o. is an employment agency registered in a registry kept by Marshal of the Mazowieckie Voivodeship under the number 361.