Information Security Engineer - SOC Service Coordinator (f/m/d) Prague, Praha

Information Security Engineer - SOC Service Coordinator (f/m/d)

Join our international team that drives positive change, united by a spirit of openness and curiosity. We empower you to have an impact and to grow – personally and professionally. With us, you work at the heart of financial systems and evolve the way markets operate. We’re excited about the future because we are the ones shaping it. Let´s do this together by sharing value!

Your area of work:

DBG CERT is looking for a highly motivated Security Engineer whose responsibility will be to ensure that the initial triage and analysis of cyber threats, reported by our SIEM solution to SOC L1 and L2 analysts, is performed in a timely fashion and in accordance with DBG quality standards as well as with regulators requirements and contractual agreements (e.g. SLA response/resolution time) with our internal customers. At this position you will be also responsible to identify and propose improvements on SOC/CERT runbooks as well as tuning of SIEM use cases to reduce the risks of false positives, false negatives and hence improve incident management escalation and handling.

Your responsibilities:

• Identify and propose adjustments/improvements on SOC runbooks based for example on false positives, tuning of SIEM use cases and audit findings.
• Engagement with internal IT functions might be required to fill the identified gaps (e.g. lack of details in asset inventory) in the alert handling process.
• Identify and propose adjustments/improvements on SIEM UCs based for example on false positives reported by SOC and audit findings
• Quality check and end-to-end testing of SOC runbooks
• Preparation for audits (evidence/requests handling) and attendance
• Attendance to regular calls with SOC Service Manager
• Participate in Blue/Red teams exercise to test and improve our monitoring and response capabilities

Your profile:

• Solid experience in a CERT or SOC team with SIEM alerts handling, workflow design and runbook preparation.
• Knowledge of cyber threats and vulnerabilities: how to properly identify, triage, and remediate threats based on threat intelligence as well as on analysis of security events, log data and network traffic.
• Expert working knowledge of technical and organizational aspects of information security, e.g., through prior defensive or offensive work experience
• Solid understanding of cyber threats and MITRE ATT&CK framework
• Deliverable-oriented, with strong problem-solving skills and adaptation on complex and highly regulated environment
• Team player willing to cooperate with multiple colleagues across office locations in a cross-cultural environment
• Good report-writing skills to present the findings of investigations
• Available during the working hours (Mo-Fr) + on-call duty

Jaké jsou benefity?

• Hybrid working model
• Fully covered public transportation card & MultiSport card
• Meal allowance and Flexible benefit account
• Extra Vacation days
• Discounted company shares
• Employee referral bonus
• Fully covered sick leave and maternity leave
• High-coverage life and accident insurance & Pension Fund contribution
• Budget for personal growth
• Company initiatives (LGBTQ+ network, ToastMasters, Women@DBG, ...)
• Stable and multicultural company with an excellent location in Karlín

Hledáme

• Anglicky - domluvit se
• Úroveň: Senior
• Praxe: 4 roky
• VŠ Vzdělání

Zajímavé nabídky práce v okolí:

• Praha
• Hostivice
• Černošice
• Rudná
• Horoměřice
• Dolní Břežany