Senior Security Engineer - Soc - L2

Professionals at Ackcent Cybersecurity have a common goal:

to improve the security of our customers, protect their assets from cyber threats, and provide high-quality service through communication and care. In this position, you will be part of our SOC Team, responsible for security threat monitoring and incident handling, helping to secure and defend our clients' assets.

We are looking for professionals with experience in cybersecurity and a broad understanding of Networks, Security Architecture, and Security Monitoring Tools. As a key team member, you will lead the handling of security threats and incidents, improve and maintain tools and procedures, and conduct forensics and malware analysis for mitigation and threat containment. As a senior member, you will also train and support junior team members and collaborate with other departments on security initiatives.

1. Analyze and verify security threat monitoring alerts to identify, classify, and prioritize incidents.
2. Create, improve, and maintain security monitoring alerts based on data correlation.
3. Operate and maintain IDS/IPS systems, working closely with security and network architects.
4. Lead responses to security incidents and investigations, coordinating with customers and IT providers, adhering to SLAs.
5. Conduct forensic and malware analysis to extract indicators of compromise, evaluating incident scope and impact.
6. Report findings to the SOC Manager and the involved CISO/CIO.
7. Train and advise junior team members.
8. Perform proactive monitoring of the cyber threat landscape through research on the latest threats and vulnerabilities.
9. Ensure contractual obligations and SLAs are met or exceeded.
10. Manage priorities, deadlines, and deliverables.
11. Develop and improve SOC tools and operational procedures.

• Degree in Computer or Telecommunications Engineering or related field.
• Over 3 years of relevant experience in information security.
• Experience in a Security Operations Center (SOC).
• Strong understanding of network fundamentals and protocols.
• Knowledge of system administration and security architecture.
• Experience with security monitoring tools (firewalls, IDS/IPS, HIDS, WAF, SIEM).
• Proven experience with at least one IDS technology.
• Scripting skills in Bash, Python, or PowerShell.
• Fluent in English, both written and spoken.
• Self-motivated, capable of working independently and in teams in challenging environments.

• Understanding of Operating Systems: Windows, Unix/Linux, macOS.
• Knowledge of Windows server administration.
• Understanding of cybersecurity concepts: cyber kill chain, TTP, threat intelligence, malware distribution.
• Knowledge of security principles: defense in depth, BYOD, data loss prevention, risk assessment, metrics.
• Over 3 years in a SOC environment.
• Strong analytical, problem-solving, communication, and leadership skills.
• Experience with AWS or Azure.
• Experience in malware reverse engineering.
• Relevant certifications (GCIH, GCFA, GCFE, GREM, CISSP) are a plus.

• Medical insurance
• Birthday day off
• Dynamic work environment emphasizing innovation and collaboration

Industry: IT Services and Consulting

Employment Type: Full-time