Cyber Security Specialist

We are a consulting company with technology-interested and happy people. We love technology, design and quality. Our diversity makes us unique and creates an inclusive and welcoming workplace where each individual is highly valued. With us, each individual is her/himself and respects others for who they are, and we believe that when a fantastic mix of people gather and share their knowledge, experiences and ideas, we can help our customers on a completely different level. We are looking for you who want to grow with us!

We are seeking a highly skilled Cyber Security Specialist to join our team. In this role, you will help develop and operate within our CyberSOC team, addressing cybersecurity risks in a fast-paced enterprise environment. You will work extensively with our SIEM platform-onboarding datasets, building automation, and managing security incidents from identification to resolution. This is an opportunity to take ownership of a critical platform, collaborate with a skilled team, and make a tangible impact on the organization''s security posture.

• Manage and operate our SIEM platform to efficiently address incidents.
• Investigate and respond to cybersecurity incidents across infrastructure, networks, operating systems, and cloud environments.
• Translate internal and external threats into actionable risks and ensure timely resolution.
• Collaborate with development teams to ensure operational excellence through necessary integrations.
• Provide clear and concise reporting to highlight trends and close security gaps.
• Ensure compliance with business and regulatory requirements.

• A proactive team player with a customer-focused mindset and strong relationship-building skills.
• Analytical and detail-oriented, with the ability to prioritize risks and drive resolution.
• Comfortable taking ownership of a platform while collaborating across a distributed team.
• A self-starter who thrives in a fast-paced, enterprise-scale environment.

• Minimum 5 years of experience in cybersecurity, with hands-on expertise in Cyber Threat Management.
• Proven experience operating and managing a SIEM platform (e.g., onboarding, automation, incident response).
• Broad technical knowledge across infrastructure, networks, operating systems, and cloud.
• Experience with incident response, threat detection controls, and risk-based security approaches.
• Familiarity with Agile methodologies and working with development teams.
• Knowledge of Zero Trust principles is a plus.

• SIEM Tools: CrowdStrike, Cribl Edge & Stream, Splunk Core, Splunk Enterprise Security
• Endpoint Tools: CrowdStrike, Palo Alto Cortex XDR, Cylance Protect
• Cloud Security: Azure Sentinel
• Security Architecture & Design for SIEM environments

• Security Tools: CrowdStrike, Cribl, Splunk, Cylance, Palo Alto XDR, etc.
• Platforms: Windows, Linux
• Cloud: Azure

• Programming/Scripting: SPL, XQL, PowerShell, JSON

• CrowdStrike Certified Falcon Administrator (CCFA)
• CrowdStrike Certified Falcon Responder (CCFR)
• CrowdStrike Certified Falcon Hunter (CCFH)
• CrowdStrike Certified SIEM Engineer (CCSE)
• CrowdStrike Certified Identity Specialist (CCIS)
• Cribl Certified Admin - Stream
• Cribl Certified Admin - Edge
• Microsoft AZ-900, MS-900

Utilization: 100%

Start date: ASAP

Location: Full-time/Contract, hybrid in Malmö/Lund/Helsingborg (no relocation)

Form of employment: Full-time until further notice, 6 months probationary employment.

We interview candidates on an ongoing basis; do not wait to submit your application.