SERVICES RESOURCES COMPANY
MANAGED CYBER ASSESSMENT VIRTUAL CISO MANAGED DETECTION AND RESPONSE MANAGED IT OPERATIONS
NEWS & REPORTS
ABOUT US TECHNOLOGY PARTNERS PARTNER WITH US CAREERS CONTACT US

Cybersecurity Expert

Sofia, Bulgaria
4/5/2021 12:00:00 AM date published

Amatas is searching for a highly motivated, flexible Cybersecurity expert that will be responsible for the basic day to day monitoring and administration of various cybersecurity tools.

Participate in global IT security improvement, being at global organizational level, at production level or at implementation/control of security measures

What You'll Do:

  • Supervise the Security Operations Center
  • Triage cybersecurity incidents using SIEM and UEBA technologies, packet captures, reports, data visualization, and pattern analysis
  • Analyze, escalate, and assist in remediation of critical information security incidents
  • Improve and challenge existing processes and procedures in a very agile and fast-moving information security environment

Cybersecurity expert should have expert knowledge of:

  • Information security policies and goals
  • Log analysis and event traffic patterns
  • The current IT threat landscape and upcoming trends in security
  • Prepare regular security reports and dashboards to measure the effectiveness of controls in place
  • Search for cyber threats and risks hiding inside the data before attacks occur
  • Organize and analyze the collected data to determine trends in the security environment of our customers
  • Make predictions for the future and eliminate the current vulnerabilities

What We’re Looking For:

  • Strong interpersonal and communication skills
  • Team player and ability to work independently with minimal supervision.
  • 3+ years’ experience in the following areas: Experience in one or more of the following areas: SOC Analyst, Intelligence Analysis and Cyber Threat Hunting
  • Network operations or engineering components while triaging and investigating cybersecurity incidents
  • System administration on Unix, Linux, or Windows
  • General technical skills, includes TCP/IP knowledge, networking and cybersecurity products
  • Readiness to acquire in-depth knowledge of network and host security technologies and products (such as firewalls, EDRs, scanners) and continuously improve these skills
  • Experience with security monitoring technologies, such as SIEM, UEBA, IPS/IDS, DLP, EDR, among others
  • Experience using open-source tools, such as VirusTotal, Passive DNS, WHOIS, etc.
  • Good understanding about business continuity and disaster recovery best practices
  • Understanding of the Mitre ATT&CK framework
  • Scripting or programming experience and application is preferable


Nice to have:

Advantage will be any of the following certification:

  • Certified SOC Analyst (CSA)
  • CompTIA Cybersecurity Analyst (CySA+)
  • CEH
  • CompTIA Security+

Benefits:

  • Challenging projects that will develop your professional skills and further expand your knowledge
  • Opportunity to work in fast growing environment
  • Trainings based on knowledge needs
  • Friendly working environment
  • Competitive remuneration package