Senior Security Engineer - SOC - L2

Professionals at Ackcent Cybersecurity share a common goal: to enhance our customers' security, safeguard their assets from cyber threats, and deliver high-quality service through effective communication and customer care. In this role, you will be part of our SOC Team, responsible for security threat monitoring and incident handling, helping to secure and defend our clients’ assets.

We seek professionals with cybersecurity experience and a comprehensive understanding of Networks, Security Architecture, and Security Monitoring Tools.

As a key team member, you will lead security threat and incident management, improve and maintain tools and procedures, and conduct forensics and malware analysis for mitigation and threat containment. As a senior member, you will also train and support junior team members and collaborate across departments on various security initiatives.

1. Analyze and verify security threat monitoring alerts to identify, classify, and prioritize incidents.
2. Create, enhance, and maintain security monitoring alerts based on data correlation.
3. Operate and maintain IDS/IPS systems, working closely with security and network architects.
4. Lead responses to security incidents, coordinate with customers and IT providers, and meet SLA requirements.
5. Conduct forensic and malware analysis to identify indicators of compromise, evaluate incident scope and impact.
6. Report findings to the SOC Manager and relevant customer CISOs/CIOs.
7. Train and advise junior team members.
8. Perform proactive monitoring by researching the latest security threats and vulnerabilities.
9. Ensure compliance with contractual obligations and SLAs.
10. Manage priorities, deadlines, and deliverables.
11. Improve SOC tools and operational procedures.

1. Degree in Computer or Telecommunications Engineering or a related field.
2. Over 3 years of relevant experience in information security.
3. Experience in a SOC environment.
4. Strong understanding of network fundamentals and internet protocols.
5. Knowledge of system administration and security architecture.
6. Experience with security monitoring tools (firewalls, IDS/IPS, HIDS, WAF, SIEM).
7. Experience with at least one IDS technology.
8. Scripting skills in Bash, Python, or PowerShell.
9. Fluent in English (spoken and written).
10. Self-motivated with the ability to work independently and collaboratively.

1. Understanding of Operating Systems: Windows, Unix/Linux, macOS.
2. Knowledge of Windows Server administration.
3. Understanding of cybersecurity concepts like the kill chain, TTPs, threat intelligence, malware distribution.
4. Knowledge of security concepts such as defense in depth, BYOD, data loss prevention, risk assessment, and security metrics.
5. Experience in a SOC for 3+ years.
6. Strong analytical, problem-solving, communication, and leadership skills.
7. Experience with AWS or Azure.
8. Previous malware reverse engineering experience.
9. Relevant certifications (GCIH, GCFA, GCFE, GREM, CISSP) are a plus.

1. Medical insurance.
2. Birthday off.
3. A dynamic, innovative, and collaborative work environment.