Team Leader/SOC Engineer
DPDgroup IT Solutions
We are DPDgroup IT Solutions - network member of Geopost - market leader in parcel delivery and e-commerce solutions. Geopost operates in 49 countries across all continents through its network of expert delivery brands. DPDgroup IT Solutions was created in Poland in 2018. We pursue delivering solutions to support the global IT and Tech operations of Geopost network. Today, we take part in ambitious Group projects, all around the world. Our mission is to create innovative solutions and also set a new standard for user’s convenience by keeping Group customers in close contact with their delivery.
Tech stack
Managment
English
Kibana
Sentinel One
Splunk
Job description
We are looking for a Person with a true experience in a SOC, who did work in the incident response field, with EDR technologies (such as Sentinel One or similar).
Requirements:
- At least 5 years of experience in Management.
- Familiarity with network protocols, firewalls, intrusion detection systems (IDS), and other security tools.
- Sentinel One with Zscaler and Splunk is a plus but the underlying technology is not an absolute must. It could also be alternative technologies of Splunk such as Qradar or ELK (Elastic search, Logstash, Kibana).
- Possess a strong understanding of various cyber threats, such as malware, ransomware, phishing attacks, etc.
- Understanding networking (IP, routing, DNS), operating systems, and cybersecurity technologies. Familiarity with network protocols, sytems (Linux, Windows), intrusion detection systems (IDS), and other security tools.
- Proficiency in at least one scripting language (shuch as shell or Python).
- Knowledege of OpenProject ticketing solution is a plus.
- Possess a strong understanding of various cyber threats, such as malware, ransomware, phishing attacks, etc.
- Good English for daily conversations.
Responsibilities:
- Proposing and implementing improvements and providing recommendations for further stages of development of the cybersecurity environment.
- Organize activities of the SOC team, act as the primary point of contact, collaborate on policy refinement, and participate in security incidents.
- Security oversight in the Microsoft Security environment, including incident monitoring, generating reports Analyzing the operation of the principles and recommending changes to policies and principles.
- Improve security configurations based on insights.
- Ability to configure and maintain network and related questions.
- Implement and manage security monitoring tools to detect and respond to security incidents (EDR,NDR).
- Analyse security logs and reports to identify trends and potential security issues.
- Develop, implement and maintain documentation related to security policies, procedures, and incidents.
- Create and update security documentation to reflect changes in the information security landscape.
During onboarding process we expect you to be available to travel to France to the SOC team (one week per month).
What we offer?
- Semi-annual evaluation meetings and a clearly defined career path and salary forecast
- A friendly Buddy to guide you through the onboarding further training and career opportunities
- Training possibilities for personal development after completing the onboarding period
- Space to implement your ideas
- Access to language learning platform eTutor
- Fitness card (Benefit Multisport)
- An open and casual company culture filled with internal events
- The opportunity to quickly develop professionally on projects in Europe and all over the world
- Great integration events :)
- Parking space
- Employee Referral Program