Senior Security Engineer - SOC - L2

Professionals at Ackcent Cybersecurity share a common goal: to enhance our clients' security, safeguard their assets from cyber threats, and deliver high-quality service through effective communication and customer care. In this role, you will be part of our SOC Team, responsible for security threat monitoring and incident handling, helping to secure and defend our clients' assets.

We seek professionals with cybersecurity experience and a comprehensive understanding of Networks, Security Architecture, and Security Monitoring Tools.

As a key member of the Ackcent team, you will lead the handling of security threats and incidents, improve and maintain tools and procedures, and conduct forensics and malware analysis for mitigation and threat containment. As a senior team member, you will also train and support junior colleagues and collaborate with other departments on security initiatives and decisions.

1. Analyze and verify security threat monitoring alerts to identify, classify, and prioritize incidents.
2. Create, improve, and maintain security monitoring alerts based on data correlation.
3. Operate and maintain IDS/IPS systems, collaborating with security and network architects to enhance security defenses.
4. Lead responses to security incidents and investigations, coordinating with customers and IT providers, adhering to SLAs.
5. Perform forensic and malware analysis to identify indicators of compromise, assessing incident scope and impact.
6. Report findings to the SOC Manager and the client's CISO/CIO.
7. Train and advise junior team members.
8. Conduct proactive research on the cyber threat landscape to keep tools and processes current.
9. Ensure contractual obligations and SLAs are met or exceeded.
10. Manage priorities, deadlines, and deliverables effectively.
11. Develop and implement improvements to SOC tools and operations.

1. Degree in Computer or Telecommunications Engineering or a related field.
2. Over 3 years of relevant experience in information security.
3. Experience in a SOC environment.
4. Strong understanding of network fundamentals and Internet protocols.
5. Knowledge of system administration and security architecture.
6. Experience with security monitoring tools (Firewall, IDS/IPS, HIDS, WAF, SIEM).
7. Experience with at least one IDS technology.
8. Scripting skills in Bash, Python, or PowerShell.
9. Fluency in English (spoken and written).
10. Self-motivated with the ability to work independently and in teams.

1. Understanding of Operating Systems: Windows, Unix/Linux, macOS.
2. Knowledge of Windows Server administration.
3. Understanding of cybersecurity concepts: kill chain, TTPs, Threat Intelligence, malware networks.
4. Knowledge of security principles: defense in depth, BYOD, data loss prevention, risk assessment, security metrics.
5. Over three years in a SOC environment.
6. Strong analytical and problem-solving skills.
7. Excellent communication, presentation, and leadership skills.
8. Initiative and follow-through on commitments.
9. Ability to manage multiple priorities in high-pressure settings.
10. Experience with AWS or Azure cloud infrastructure.
11. Experience in malware reverse engineering.
12. Relevant certifications (GCIH, GCFA, GCFE, GREM, CISSP) are advantageous.

• Medical insurance
• Birthday day off
• A dynamic environment promoting innovation and collaboration

Industry: IT Services and Consulting

Employment Type: Full-time