(HQM960) Senior Security Engineer - SOC

Professionals at Ackcent Cybersecurity share a common goal: to enhance our customers' security, protect their assets from cyber threats, and deliver high-quality service through effective communication and care. In this role, you will be part of our SOC Team, responsible for security threat monitoring and incident handling, helping to secure and defend our clients’ assets.

We seek professionals with experience in cybersecurity, possessing a broad and deep understanding of Networks, Security Architecture, and Security Monitoring Tools.

As a key team member at Ackcent, you will lead the handling of security threats and incidents, improve and maintain tools and procedures, and conduct forensics and malware analysis for mitigation and threat containment. As a senior team member, you will also train and support junior colleagues and collaborate with other departments on various security initiatives.

Key Responsibilities

• Analyze and verify security threat monitoring alerts to identify, classify, and prioritize incidents.
• Create, improve, and maintain security monitoring alerts based on data correlation from various sources.
• Operate and maintain IDS/IPS systems, working closely with security and network architects to enhance security defenses.
• Lead responses to security incidents and investigations, coordinating with customers and IT providers, adhering to SLAs.
• Conduct forensic and malware analysis to identify indicators of compromise, assessing incident scope and impact.
• Report findings to the SOC Manager and the involved CISO/CIO of the customer.
• Provide training and guidance to junior team members.
• Monitor the cyber threat landscape proactively by researching the latest security threats and vulnerabilities to keep tools and processes current.
• Ensure contractual obligations and SLAs are met or exceeded.
• Manage priorities, deadlines, and deliverables efficiently.
• Develop and implement improvements to SOC tools and operational procedures.

Required Skills & Experience

• Degree in Computer or Telecommunications Engineering or a related field.
• Over 3 years of relevant experience in information security.
• Experience working in a Security Operations Center (SOC).
• Strong understanding of network fundamentals and Internet protocols.
• Knowledge of system administration and security architecture.
• Experience with security monitoring tools (firewalls, IDS/IPS, HIDS, WAF, SIEM).
• Proven experience with at least one IDS technology.
• Scripting skills in Bash, Python, or PowerShell.
• Fluent in English, both written and spoken.
• Self-motivated, capable of working independently and collaboratively in challenging environments.

Nice to Have

• Understanding of Operating Systems: Windows, Unix/Linux, macOS.
• Knowledge of Windows Server administration.
• Understanding of cybersecurity concepts: kill chain, TTPs, threat intelligence, malware distribution networks.
• Knowledge of security principles: defense in depth, BYOD, data loss prevention, risk assessment, and security metrics.
• Over three years of experience in a SOC environment.
• Strong analytical and problem-solving skills.
• Excellent communication, presentation, and leadership abilities.
• Initiative and follow-through capabilities.
• Ability to manage multiple priorities under pressure.
• Experience with AWS or Azure cloud infrastructure.
• Previous malware reverse engineering experience.
• Relevant certifications (GCIH, GCFA, GCFE, GREM, CISSP) are advantageous.

What We Offer

• Competitive salary
• Medical insurance
• Remote work opportunities
• Birthday day off
• Flexible working hours
• A dynamic environment emphasizing innovation and collaboration

Industry: IT Services and IT Consulting

Employment Type: Full-time

This job posting is active.