Security Operations Centre Analyst (m/f/d)
- Bucharest (RO)
- IT
- Software Development
- Fulltime
- Published: 2024-09-16
What do we do?
Thinkproject is a European market-leader in digitalisation tools for construction companies. It sounds complex, but we'll explain further! Construction companies used to use manual administration and physical paperwork for projects (sometimes hundreds of thousands of bits of paperwork for one project!). Using our construction intelligence solutions, businesses can go digital, which benefits everyone from the construction companies to the wider public.
Our mission is to deliver digitalisation to make a safer, healthier and more sustainable AECO (Architecture, Engineering, Construction, Operations) industry. This is a really exciting time to join our company, since our founding in 2000 we have gone from strength-to-strength and have lots of exciting developments coming up soon that you could be a part of.
What your day will look like
- Continuously monitor security events using a variety of tools (e.g., SIEM, IDS/IPS, firewalls) to identify potential threats, anomalies, vulnerabilities, and incidents.
- Investigate and respond to security events and incidents, ensuring timely identification, containment, eradication, and recovery from threats. Document and report incidents in line with existing policies
- Conduct forensic analysis of cybersecurity events, ensuring that all documentation meets legal standards.
- Conduct regular security checks on key systems to monitor for issues and indications of compromise
- Proactively hunt for threats using threat feeds and advanced analysis to understand emerging threats and vulnerabilities. Provide insights and recommendations to mitigate risks.
- Arrange and oversee frequent penetration tests of our solutions, ensuring they are conducted successfully and without impacting service.
- Manage the output of security issues from cyber security assessment tools, coordinating with key stakeholders to ensure timely mitigation and remediation of identified issues and threats.
- Assist in developing and implementing cybersecurity policies, procedures, monitoring and response solutions.
- Ensure all security operations are conducted in compliance with relevant regulatory requirements, industry standards, and internal policies. Assist in the preparation and maintenance of audit and compliance documentation.
- Prepare detailed internal and customer facing reports on security incidents, vulnerabilities, posture and compliance status for management, stakeholders and customers.
- Develop and implement event response procedures and playbooks
- Participate in and develop security assessment exercises to evaluate operational effectiveness.
- Contribute to the ongoing maturation of the Security Operations Centre by introducing new logging, monitoring, and response solutions to enhance departmental operations and improve cybersecurity coverage.
- Adapt SOC processes, solutions, and procedures to enhance the monitoring of the organization's IT network health.
What you need to fulfill the role
- A bachelor’s degree in cyber security, or equivalent work experience.
- English speaking
- Experience with security information and event management (SIEM) tools, endpoint detection and response (EDR) platforms, and threat intelligence platforms.
- Strong knowledge of cybersecurity principles, threat landscapes, and incident response procedures. Proficiency in analysing logs, network traffic, and security events to detect and respond to threats.
- Awareness of current and emerging cyber threats affecting SAAS organisations.
- Experience in developing a SOC function to enhance the maturity of operations and expand the coverage of monitored services.
- Experience in developing and producing security posture reports for diverse audiences, including management, customers, and stakeholders.
- Ability to work effectively in a team environment, collaborating with cross-functional teams to achieve common goals.
- Ability to communicate difficult or sensitive information tactfully.
- Proficient in time management and prioritization.
- Ability to prioritize and execute tasks in a high-pressure environment and make sound decisions in emergency situations.
- Ability to self-learn modern technologies with a can-do attitude.
- Ability to challenge themselves and their work to ensure the right workload is in the right place, automating, simplifying, and standardizing where appropriate.
- Experience with Azure and Azure AD
- Experience with Azure and AWS technologies and services
What we offer
We are a passionate bunch here. To join Thinkproject is to shape what our company becomes. We take feedback from our staff very seriously and give them the tools they need to help us create our fantastic culture of mutual respect. We believe that investing in our staff is crucial to the success of our business.
Your contact:
Aurelia Faisandel
Please submit your application, including salary expectations and potential date of entry, by submitting the form on the next page.
Working at thinkproject.com - think career. think ahead.