Strategic Staffing Solutions International customer — a global IT company that supports major organizations in their digital transformation efforts. Their team develops innovative IT solutions, transitions clients to the cloud, integrates digital processes, and manages IT systems operations and support.

They also maintain a strong strategic partner network, working with top international players such as AWS, Google, Microsoft, and SAP. Their goal is to make the digital world easier, more efficient, and more secure—ultimately helping their customers succeed.

Company is now hiring an experienced SOC Analyst.

Key Responsibilities:

• Security Monitoring and Response: Perform real-time proactive security monitoring, detection and response to security events and incidents from the various SOC entry channels (SIEM, Tickets, Email and Phone)
• Incident Categorization: Categorize and assist with resolution of incoming security events and raise necessary incidents after a thorough quality check of the event data
• Incident Analysis: Conduct thorough checklist-based investigation of security events generated by detection mechanisms such as SIEM, IDS/IPS, AV, EDR
• Incident Escalation: Based on the security incident severity, escalate to service support teams, Tier 2 information security specialists, and/or customer as appropriate to perform further investigation and resolution
• Incident Resolution: Work independently or closely with Tier 2 and core support, providing adequate information about incidents required for resolution
• Incident Management: Participate in security incident management and vulnerability management processes
• Operational Improvements: Recommend enhancements to SOC processes & procedures
• Documentation: Ensure clear and concise documentation of analyzed security incidents adhering to SOC internal documentation guidelines
• Optimization: Provide input on tuning and optimization of security systems and correlation rules (e.g. whitelist requests)

Requirments:

• Has a foundational understanding of basic computer networking (TCP/IP stack, VPN, proxies, firewalls)
• Comfortable working with Linux or Windows operating systems and is aware of some of the differences between the operating systems (also from the security perspective)
• Understands basic monitoring and data analysis concepts such as time trends, statistical anomalies, log and metrics analysis
• Knowledge of common cyber threats such as phishing, scanning, vulnerability exploitation and malware
• Understands cloud access and authentication mechanisms and principles on a foundational level (SSO, MFA, least privilege
• Foundational experience using or configuring security tools and technologies (SIEM / EDR / AntiViru
• Basic skills in a scripting or programming language such as Bash, Powershell or Python
• An overview of the cyber-kill chain framework and its application in security incidents
• Proficiency in Microsoft Office Applications, case management and ticketing systems
• Excellent English language knowledge
• At least 3 years of experience in this Cybersecurity field
• Necessary education: Preferred Cybersecurity / Engineering / IT University graduate / student/ undergraduate

Work Organization

• Work is organized in a 24-hour schedule (including weekends), covered through 9-hour shifts (including one our lunch break)
• All shifts are planned in advance and rotated fairly so everyone shares the workload equally and has enough time to rest and recharge.

We offer:

• Monthly gross salary from 2000 to 3700 EUR, depending on your level of expertise
• Hybrid way of working, based on your own preferences, with cozy office space in the center of Riga
• Family-oriented company values and healthy attitude towards work and life balance - granting an additional 4 vacation days, birthday leave, "Happy Land" space in the office for children, etc.
• Individual development and learning plan, including yearly budget for external training
• Necessary essentials – health insurance with dental services and sports coverage
• Possibility to work in mutual trust and a positive team environment, to be creative and improve working flows by self-initiative
• Friendly, multicultural and cooperation-oriented colleagues