Senior Security Engineer - SOC - L2

Professionals at Ackcent Cybersecurity have a common goal: to improve the security of our customers, protect their assets from cyber threats, and provide high-quality service through communication and care. In this position, you will be part of our SOC Team, responsible for security threat monitoring and incident handling. You will help secure and defend our clients' assets.

We seek professionals with experience in cybersecurity and a comprehensive understanding of Networks, Security Architecture, and Security Monitoring Tools.

As a key member of the Ackcent team, you will lead the handling of security threats and incidents, improve and maintain tools and procedures, and conduct forensics and malware analysis for mitigation and threat containment. As a senior team member, you will train and support junior colleagues and collaborate with other departments on security initiatives.

1. Analyze and verify security threat monitoring alerts to identify, classify, and prioritize incidents.
2. Create, improve, and maintain security monitoring alerts based on data correlation.
3. Operate and maintain IDS/IPS systems, collaborating with security and network architects to enhance security defenses.
4. Lead responses to security incidents, working with customers and IT providers, adhering to SLAs.
5. Conduct forensics and malware analysis to identify indicators of compromise, assessing incident scope and impact.
6. Report findings to the SOC Manager and the customer's CISO/CIO.
7. Train and advise junior team members.
8. Perform proactive research on the cyber threat landscape to keep tools and processes up to date.
9. Ensure contractual obligations and SLAs are met or exceeded.
10. Manage priorities, deadlines, and deliverables.
11. Develop and improve SOC procedures and tools.

1. Bachelor's degree in Computer or Telecommunications Engineering or related field.
2. Over 3 years of experience in information security.
3. Experience working in a SOC environment.
4. Strong understanding of network fundamentals and internet protocols.
5. Knowledge of system administration and security architecture.
6. Experience with security monitoring tools (firewalls, IDS/IPS, HIDS, WAF, SIEM).
7. Proven experience with at least one IDS technology.
8. Scripting skills in Bash, Python, or PowerShell.
9. Fluent in English, both written and spoken.
10. Self-motivated with the ability to work independently and in teams in challenging environments.

1. Understanding of Operating Systems (Windows, Unix/Linux, macOS).
2. Knowledge of Windows Server administration.
3. Understanding of cybersecurity concepts like the cyber kill chain, TTPs, threat intelligence, and malware distribution networks.
4. Knowledge of security principles such as defense in depth, BYOD, data loss prevention, risk assessment, and security metrics.
5. Experience in a SOC environment for three or more years.
6. Strong analytical, problem-solving, and communication skills.
7. Experience with AWS or Azure infrastructure.
8. Previous malware reverse engineering experience.
9. Relevant certifications (GCIH, GCFA, GCFE, GREM, CISSP) are advantageous.

1. Competitive salary
2. Medical insurance
3. Remote work
4. Birthday off
5. Flexible hours
6. A dynamic environment focused on innovation and collaboration

Industry: IT Services and Consulting

Employment Type: Full-time