FMS-352 | Senior Security Engineer - Soc |

Professionals at Ackcent Cybersecurity share a common goal: to enhance our clients' security, protect their assets from cyber threats, and deliver high-quality service through effective communication and care.

You will be part of our SOC Team, responsible for security threat monitoring and incident handling. Your role involves securing and defending our clients’ assets, leading the handling of security threats and incidents, improving tools and procedures, and conducting forensics and malware analysis for mitigation and threat containment. As a senior team member, you will also train and support junior staff and collaborate with other departments on security initiatives.

1. Analyze and verify security threat monitoring alerts to identify, classify, and prioritize incidents.
2. Create, improve, and maintain security monitoring alerts based on data correlation.
3. Operate and maintain IDS/IPS systems, working closely with security and network architects.
4. Lead response efforts to security incidents and investigations, coordinating with customers and IT providers, adhering to SLAs.
5. Conduct forensic and malware analysis to identify indicators of compromise, evaluate incident scope and impact.
6. Report findings to the SOC Manager and the involved CISO/CIO.
7. Train and advise junior team members.
8. Perform proactive research on the latest security threats and vulnerabilities to keep tools and processes current.
9. Ensure contractual obligations and SLAs are met or exceeded.
10. Manage priorities, deadlines, and deliverables.
11. Develop and improve SOC tools and operational procedures.

• Degree in Computer/Telecommunications Engineering or related field.
• Over 3 years of relevant experience in information security.
• Experience working in a SOC environment.
• Strong understanding of network fundamentals and Internet protocols.
• Knowledge of system administration and security architecture.
• Experience with security monitoring tools (Firewall, IDS/IPS, HIDS, WAF, SIEM).
• Proven experience with at least one IDS technology.
• Scripting skills in Bash, Python, or PowerShell.
• Fluent in English (written and spoken).
• Self-motivated, capable of working independently and in team settings.

• Knowledge of Operating Systems: Windows, Unix/Linux, OSX.
• Windows Server administration skills.
• Understanding of cybersecurity concepts: kill chain, TTP, threat intelligence, malware distribution.
• Knowledge of security concepts: defense in depth, BYOD, data loss prevention, risk assessment, security metrics.
• Experience with AWS or Azure infrastructure.
• Previous malware reverse engineering experience.
• Relevant certifications (GCIH, GCFA, GCFE, GREM, CISSP) are a plus.

• Competitive salary
• Medical insurance
• Remote work
• Birthday day off
• Flexible working hours
• Dynamic work environment emphasizing innovation and collaboration

Full-time position in the IT Services and Consulting industry.

Original job posting available at: Kit Empleo