Analyst, Cyber Security Operations

Role Description
We are looking for an Analyst to join our Cyber Security Operations team in Bucharest!

With this role, you will join the Cyber Security Operations team, whose key missions are security monitoring, incident response and vulnerability management. In this role you will be at the forefront of SES security landscape, ensuring a secure environment in a global scale. Are you up for the challenge?

You will be responsible for (this is not an exhaustive list):

• Perform L2 security monitoring and analysis of security alerts to identify security incidents
• Manage security incidents autonomously following the established incident response framework
• Perform in-depth tehcnical analyses if security threats and incidents, including malware analysis, network and system forensic analysis
• Improve detection capabilities by defining new use-cases, implementing corresponding rules, improving cur-rent ruleset and ensuring necessary logs are collected by the SIEM
• Support the automation, maintaining and tuning of the infrastructure and tools of the cyber security operations function
• Landscape includes but is not limited to: SIEM platform regarding log sources onboarding, log parsing, rules/alerts/reports definition, SOAR platform, sandboxes, EDR tools, forensics workstations
• Ensure support, quality assurance and act as first point of contact for the L1 Cyber Security Operations team
• Perform 24/7 on-call support
  
  

YOUR PROFILE

• Must have
• Bachelor's degree and at least 2 years of experience in Cyber Security, Computer Science, Information Technology or similar field (a combination of experience and education will be considered)
• Minimum 1 year of experiene in computer security, incident response and analysis of security events
• Knowledge in system security, application security and network security
• Knowledge of security technologies, such as Antivirus/Anti-malware, Endpoint Detection and Respnse (EDR), Email Filtering Solution, Web Proxy/Content Filtering and Security Information and Event Management (SI-EM)
• Ability to work on-call
• Willingness to undergo a NATO/EU security clearance process
• Nice to Have
• Security certifications such as SANS GCIH, GCFE, GCFA, GREM, GCIA; CompTIA S+, CySA+; CEH and any other security technical and operational oriented certification
• Previous exposure to Network and Host Intrusion Detection/Prevention Systems and Security Orchestration, Automation, and Response (SOAR) technology
• Knowledge in cloud security
• Experience in malware analysis (static analysis and reviewing detonation analysis)
• Knowledge in capturing memory, disk images and network traffic and analysing them for indicators of com-promise
• Knowledge of computer forensics, security vulnerabilities and exploits
• Previous exposure to large- and small-scale incidents
• Knowledge of scripting languages
  
  
  
  

What's In It For You

• Flexible working policy
• Bonus plan
• Comprehensive and competitive benefits plan
• A range of wellness activities and employee assistance programs
• An employer that values all aspects of Diversity and respects every individual’s story
  
  
  

GOOD TO KNOW

Embark on a career with us, where diversity isn't just a buzzword – it's our driving force. We are crafting a workplace mosaic that values every hue, background, and perspective. Join a global team where inclusivity sparks innovation, and individuality is not only embraced but celebrated. At SES we are committed to hiring inspiring individuals from all backgrounds. We take great pride in creating safe and inclusive processes and we support the recruitment, retention, and evolution of all employees irrespective of gender, colour, race, ethnicity, religion, sexual orientation, disability, veteran or marital status, background or walk in life.