Sorint.SEC is looking for a Cyber Security Engineer to be placed in its Security Operation Center operating in h24 regime at the headquarters of Brembate, Bergamo.
The candidate will be placed in a highly motivated and fast-growing context; he/she will have the opportunity to develop and consolidate his/her skills within a team of established professionals in the field and to contribute to the development of new technologies for the identification of cyber threats.
The main tasks will be as follows:
•Analysis of events detected by advanced platforms able to detect and/or counter malicious activities on the network
•Management of Endpoint and Network Security devices (EDR, XDR, NGFW, Proxy)
•Application of Incident Response procedures related to computer attacks
Monitoring and management of SIEM tools dedicated to the correlation and analysis of security events.
The following characteristics are required
•Great passion and curiosity about Security and Cybersecurity issues and in general about the universe of Information Security
•Generic knowledge and familiarity with Microsoft and Linux operating systems
•Generic knowledge of the most common traditional defense technologies (Firewall, IPS, Antivirus/Antispam, Proxy)
Knowledge of Splunk and QRadar SIEM platforms
•Good knowledge of architectures and mechanisms to defend against cyber attacks
•Expertise in developing tools and solutions to facilitate the daily activities of the SOC
•Professionalism in relationships with colleagues and/or customers
•Availability to work on shifts
Preferential qualifications include:
•Industry certifications (Splunk, QRadar, Paloalto, Cisco CCNA etc. product certifications)
•Written and spoken knowledge of the English language
The candidate will be inserted in the SOC structure operating in h24 mode.