SERVICES RESOURCES COMPANY
MANAGED CYBER ASSESSMENT VIRTUAL CISO MANAGED DETECTION AND RESPONSE MANAGED IT OPERATIONS
NEWS & REPORTS
ABOUT US TECHNOLOGY PARTNERS PARTNER WITH US CAREERS CONTACT US

Cybersecurity Expert

Sofia, Bulgaria
4/5/2021 12:00:00 AM date published
4/5/2021 12:00:00 AM date published

Amatas is searching for a highly motivated, flexible Cybersecurity expert that will be responsible for the basic day-to-day monitoring and administration of various cybersecurity tools.

Participate in global IT security improvement, being at the global organizational level, at production level, or at implementation/control of security measures

What You'll Do:

  • Supervise the Security Operations Center
  • Triage cybersecurity incidents using SIEM and UEBA technologies, packet captures, reports, data visualization, and pattern analysis
  • Analyze, escalate, and assist in remediation of critical information security incidents
  • Improve and challenge existing processes and procedures in a very agile and fast-moving information security environment

Cybersecurity expert should have expert knowledge of:

  • Information security policies and goals
  • Log analysis and event traffic patterns
  • The current IT threat landscape and upcoming trends in security
  • Prepare regular security reports and dashboards to measure the effectiveness of controls in place
  • Search for cyber threats and risks hiding inside the data before attacks occur
  • Organize and analyze the collected data to determine trends in the security environment of our customers
  • Make predictions for the future and eliminate the current vulnerabilities

What We’re Looking For

  • Strong interpersonal and communication skills
  • Team player and ability to work independently with minimal supervision.
  • 3+ years’ experience in the following areas: Experience in one or more of the following areas: SOC Analyst, Intelligence Analysis and Cyber Threat Hunting
  • Network operations or engineering components while triaging and investigating cybersecurity incidents
  • System administration on Unix, Linux, or Windows
  • General technical skills, includes TCP/IP knowledge, networking, and cybersecurity products
  • Readiness to acquire in-depth knowledge of network and host security technologies and products (such as firewalls, EDRs, scanners) and continuously improve these skills
  • Experience with security monitoring technologies, such as SIEM, UEBA, IPS/IDS, DLP, EDR, among others
  • Experience using open-source tools, such as VirusTotal, Passive DNS, WHOIS, etc.
  • Good understanding about business continuity and disaster recovery best practices
  • Understanding of the Mitre ATT&CK framework
  • Scripting or programming experience and application is preferable


Nice to have:

Advantage will be any of the following certifications:

  • Certified SOC Analyst (CSA)
  • CompTIA Cybersecurity Analyst (CySA+)
  • CEH
  • CompTIA Security+

Benefits:

  • Challenging projects that will develop your professional skills and further expand your knowledge
  • Opportunity to work in a fast-growing environment
  • Training based on knowledge needs
  • Friendly working environment
  • Competitive remuneration package