Senior Security Engineer - SOC - L2

Professionals at Ackcent Cybersecurity share a common goal: to enhance our customers' security, protect their assets from cyber threats, and provide high-quality service through effective communication and customer care. In this role, you will be part of our SOC Team, responsible for security threat monitoring and incident handling, helping to secure and defend our clients’ assets.

We seek professionals with experience in cybersecurity and a comprehensive understanding of Networks, Security Architecture, and Security Monitoring Tools.

As a key team member, you will lead the handling of security threats and incidents, improve and maintain tools and procedures, and conduct forensics and malware analysis for mitigation and threat containment. This senior role includes training and supporting junior team members and collaborating with other departments on initiatives and decisions related to Security Services.

1. Analyze and verify security threat monitoring alerts to identify, classify, and prioritize incidents.
2. Create, improve, and maintain security monitoring alerts based on data correlation.
3. Operate and maintain IDS/IPS systems, working closely with security and network architects to enhance security defenses.
4. Lead responses to security incidents and investigations, coordinating with customers and IT providers, adhering to SLA requirements.
5. Conduct forensic and malware analysis to identify indicators of compromise, assessing incident scope and impact.
6. Report findings to the SOC Manager and relevant customer CISOs/CIOs.
7. Provide training and guidance to junior team members.
8. Proactively monitor the cyber threat landscape through research to keep tools and processes current.
9. Ensure contractual obligations and SLAs are met or exceeded.
10. Manage priorities, deadlines, and deliverables effectively.
11. Develop and implement improvements to SOC tools and operations.

1. Degree in Computer or Telecommunications Engineering or a related field.
2. Over 3 years of relevant experience in information security.
3. Experience in a Security Operations Center (SOC) environment.
4. Strong understanding of network fundamentals and Internet protocols.
5. Knowledge of system administration and security architecture.
6. Experience with security monitoring tools (firewalls, IDS/IPS, HIDS, WAF, SIEM).
7. Proven experience with at least one IDS technology.
8. Scripting skills in Bash, Python, or PowerShell.
9. Fluent in English (written and spoken).
10. Self-motivated with the ability to work independently and collaboratively in challenging environments.

1. Understanding of Operating Systems (Windows, Unix/Linux, macOS).
2. Knowledge of Windows Server administration.
3. Understanding of cybersecurity concepts like the cyber kill chain, TTP, threat intelligence, and malware distribution networks.
4. Knowledge of defense in depth, BYOD management, data loss prevention, risk assessment, and security metrics.
5. Experience over three years in a SOC environment.
6. Strong analytical, problem-solving, communication, presentation, and leadership skills.
7. Experience with AWS or Azure infrastructure.
8. Previous malware reverse engineering experience.
9. Relevant certifications (GCIH, GCFA, GCFE, GREM, CISSP) are advantageous.

• Medical insurance
• Birthday day off
• A dynamic, innovative, and collaborative work environment

Industry: IT Services and IT Consulting

Employment Type: Full-time