We are looking for a Person with a true experience in a SOC, who did work in the incident response field, with EDR technologies (such as Sentinel One or similar). 

Requirements: 

• At least 5 years of experience in Management. 
• Familiarity with network protocols, firewalls, intrusion detection systems (IDS), and other security tools. 
• Sentinel One with Zscaler and Splunk is a plus but the underlying technology is not an absolute must. It could also be alternative technologies of Splunk such as Qradar or ELK (Elastic search, Logstash, Kibana). 
• Possess a strong understanding of various cyber threats, such as malware, ransomware, phishing attacks, etc. 
• Understanding networking (IP, routing, DNS), operating systems, and cybersecurity technologies. Familiarity with network protocols, sytems (Linux, Windows), intrusion detection systems (IDS), and other security tools. 
• Proficiency in at least one scripting language (shuch as shell or Python). 
• Knowledege of OpenProject ticketing solution is a plus. 
• Possess a strong understanding of various cyber threats, such as malware, ransomware, phishing attacks, etc. 
• Good English for daily conversations. 

Responsibilities: 

• Proposing and implementing improvements and providing recommendations for further stages of development of the cybersecurity environment.
• Support the preparation of a cybersecurity roadmap for the organization. 
• Assist in the development and testing of disaster recovery and business continuity plans. 
• Organize activities of the SOC team, act as the primary point of contact, collaborate on policy refinement, and participate in security incidents. 
• Security oversight in the Microsoft Security environment, including incident monitoring, generating reports Analyzing the operation of the principles and recommending changes to policies and principles. 
• Overseeing routine security activities, including vulnerability scanning, tracking patch management KPIs, and preparing reports. 
• Improve security configurations based on insights. 
• Coordinate technical activities across different teams, including email security management, oversight of Microsoft Defender for Servers, Intune MDM, Network Security.
• Ability to configure and maintain network and related questions. 
• Implement and manage security monitoring tools to detect and respond to security incidents (EDR,NDR). 
• Analyse security logs and reports to identify trends and potential security issues. 
• Active directory security policy establishment, role and group definition and other configurations. 
• User management and administration on Azure AD. 
• Develop, implement and maintain documentation related to security policies, procedures, and incidents. 
• Create and update security documentation to reflect changes in the information security landscape. 
• Backup management - assigning and execution. Ability to produce backup policies. 
• Prepare for and participate in security audits and assessments. 

During onboarding process we expect you to be available to travel to France to the SOC team (one week per month). 

 What we offer? 

• Semi-annual evaluation meetings and a clearly defined career path and salary forecast 
• A friendly Buddy to guide you through the onboarding further training and career opportunities 
• Training possibilities for personal development after completing the onboarding period 
• Space to implement your ideas 
• Access to language learning platform eTutor 
• Fitness card (Benefit Multisport) 
• An open and casual company culture filled with internal events 
• The opportunity to quickly develop professionally on projects in Europe and all over the world 
• Great integration events :) 
• Parking space 
• Employee Referral Program