Senior Security Engineer - Soc - L2

Professionals at Ackcent Cybersecurity share a common goal: to enhance our customers' security, safeguard their assets from cyber threats, and deliver high-quality service through effective communication and customer care. In this role, you will be part of our SOC Team, responsible for security threat monitoring and incident handling, helping to secure and defend our clients' assets.

We seek professionals with cybersecurity experience and a comprehensive understanding of Networks, Security Architecture, and Security Monitoring Tools.

As a key team member, you will lead security threat and incident management, improve and maintain tools and procedures, and conduct forensics and malware analysis for mitigation and threat containment. This senior role includes training and supporting junior team members and collaborating with other departments on security initiatives.

Key Responsibilities

• Analyze and verify security threat monitoring alerts to identify, classify, and prioritize incidents.
• Create, improve, and maintain security monitoring alerts based on data correlation.
• Operate and maintain IDS/IPS systems, collaborating with security and network architects to enhance defenses.
• Lead responses to security incidents, working with customers and IT providers, adhering to SLAs.
• Perform forensics and malware analysis to identify indicators of compromise, evaluating incident scope and impact.
• Report findings to the SOC Manager and the involved CISO/CIO.
• Advise and train junior team members.
• Proactively monitor the cyber threat landscape through research to keep tools and processes current.
• Ensure contractual obligations and SLAs are met or exceeded.
• Manage priorities, deadlines, and deliverables.
• Develop and improve SOC tools and operational procedures.

Required Skills & Experience

• Degree in Computer or Telecommunications Engineering or related field.
• Over 3 years of relevant information security experience.
• Experience in a SOC environment.
• Strong understanding of network fundamentals and Internet protocols.
• Knowledge of system administration and security architecture.
• Experience with security monitoring tools (firewalls, IDS/IPS, HIDS, WAF, SIEM).
• Proven experience with at least one IDS technology.
• Scripting skills in Bash, Python, or PowerShell.
• Fluent in English, both written and spoken.
• Self-motivated, capable of working independently and collaboratively in challenging environments.

Nice to Have

• Understanding of Operating Systems: Windows, Unix/Linux, OSX.
• Knowledge of Windows Server administration.
• Understanding of cybersecurity concepts: kill chain, TTP, threat intelligence, malware distribution.
• Knowledge of security principles: defense in depth, BYOD, data loss prevention, risk assessment, security metrics.
• Over 3 years in a SOC environment.
• Strong analytical, problem-solving, communication, presentation, and leadership skills.
• Experience with AWS or Azure.
• Experience with malware reverse engineering.
• Relevant certifications (GCIH, GCFA, GCFE, GREM, CISSP) are advantageous.

What We Offer

• Medical insurance
• Birthday day off
• A dynamic environment fostering innovation and collaboration

IT Services and IT Consulting

Employment Type

Full-time