Logo

Security Operations Centre Analyst (m/f/d)

  • Bucharest (RO)
  • IT
  • Software Development
  • Fulltime
  • Published: 2024-09-16
scheme imagescheme image
Want to work in a culture built on mutual trust and respect? How about having the freedom to make work fit into your life (and not the other way round)? A career with Thinkproject could be just the opportunity you're looking for.

What do we do?
Thinkproject is a European market-leader in digitalisation tools for construction companies. It sounds complex, but we'll explain further! Construction companies used to use manual administration and physical paperwork for projects (sometimes hundreds of thousands of bits of paperwork for one project!). Using our construction intelligence solutions, businesses can go digital, which benefits everyone from the construction companies to the wider public. 
Our mission is to deliver digitalisation to make a safer, healthier and more sustainable AECO (Architecture, Engineering, Construction, Operations) industry. This is a really exciting time to join our company, since our founding in 2000 we have gone from strength-to-strength and have lots of exciting developments coming up soon that you could be a part of.

What your day will look like

We are seeking a skilled Security Operations Centre (SOC) Analyst to join our team and play a critical role in protecting our organization from cyber threats. The SOC Analyst will be responsible for monitoring, detecting, analysing, and responding to security incidents and events, ensuring the integrity, confidentiality, and availability of our solutions and data. You will play a pivotal role in ensuring compliance with Thinkproject's regulatory compliance standards across all platforms.
The SOC Analyst will be a key player in building and operating our cybersecurity operations, providing real-time analysis and investigation of potential security threats. They will collaborate with cross-functional teams to investigate threats, take remedial action, and resolve any security concerns.
The ideal candidate will have knowledge and experience of working in a Security Operations Centre (SOC), with expertise in introducing and managing logging solutions, particularly Security Information and Event Management (SIEM) systems. They should be capable of providing oversight, expert guidance, and support within a security operations team. 
The role will involve handling both reactive responses to security incidents of varying criticality and proactive measures to enhance the organization’s security posture. Familiarity with cloud platforms such as Azure and AWS is advantageous.
The SOC Analyst will also be responsible for monitoring the health of Thinkproject's IT network infrastructure, responding to health-related events using the same high-level structure applied to cybersecurity events.
This role will work within our Product and Central IT organizational branch, under direction of the Director of Cyber Security and Networking. 
 
  • Continuously monitor security events using a variety of tools (e.g., SIEM, IDS/IPS, firewalls) to identify potential threats, anomalies, vulnerabilities, and incidents.
  • Investigate and respond to security events and incidents, ensuring timely identification, containment, eradication, and recovery from threats. Document and report incidents in line with existing policies
  • Conduct forensic analysis of cybersecurity events, ensuring that all documentation meets legal standards.
  • Conduct regular security checks on key systems to monitor for issues and indications of compromise
  • Proactively hunt for threats using threat feeds and advanced analysis to understand emerging threats and vulnerabilities. Provide insights and recommendations to mitigate risks.
  • Arrange and oversee frequent penetration tests of our solutions, ensuring they are conducted successfully and without impacting service.
  • Manage the output of security issues from cyber security assessment tools, coordinating with key stakeholders to ensure timely mitigation and remediation of identified issues and threats.
  • Assist in developing and implementing cybersecurity policies, procedures, monitoring and response solutions.
  • Ensure all security operations are conducted in compliance with relevant regulatory requirements, industry standards, and internal policies. Assist in the preparation and maintenance of audit and compliance documentation.
  • Prepare detailed internal and customer facing reports on security incidents, vulnerabilities, posture and compliance status for management, stakeholders and customers. 
  • Develop and implement event response procedures and playbooks
  • Participate in and develop security assessment exercises to evaluate operational effectiveness.
  • Contribute to the ongoing maturation of the Security Operations Centre by introducing new logging, monitoring, and response solutions to enhance departmental operations and improve cybersecurity coverage.
  • Adapt SOC processes, solutions, and procedures to enhance the monitoring of the organization's IT network health.

What you need to fulfill the role

  • A bachelor’s degree in cyber security, or equivalent work experience.
  • English speaking
  • Experience with security information and event management (SIEM) tools, endpoint detection and response (EDR) platforms, and threat intelligence platforms.
  • Strong knowledge of cybersecurity principles, threat landscapes, and incident response procedures. Proficiency in analysing logs, network traffic, and security events to detect and respond to threats.
  • Awareness of current and emerging cyber threats affecting SAAS organisations.
  • Experience in developing a SOC function to enhance the maturity of operations and expand the coverage of monitored services.
  • Experience in developing and producing security posture reports for diverse audiences, including management, customers, and stakeholders.
  • Ability to work effectively in a team environment, collaborating with cross-functional teams to achieve common goals.
  • Ability to communicate difficult or sensitive information tactfully.
  • Proficient in time management and prioritization.
  • Ability to prioritize and execute tasks in a high-pressure environment and make sound decisions in emergency situations.
  • Ability to self-learn modern technologies with a can-do attitude.
  • Ability to challenge themselves and their work to ensure the right workload is in the right place, automating, simplifying, and standardizing where appropriate.
  • Experience with Azure and Azure AD
  • Experience with Azure and AWS technologies and services

What we offer

Lunch 'n' Learn Sessions I Women's Network I LGBTQIA+ Network I Coffee Chat Roulette I Free English Lessons I Thinkproject Academy I Social Events I Volunteering Activities I Open Forum with Leadership Team (Tp Café) I Hybrid working I Unlimited learning

We are a passionate bunch here. To join Thinkproject is to shape what our company becomes. We take feedback from our staff very seriously and give them the tools they need to help us create our fantastic culture of mutual respect. We believe that investing in our staff is crucial to the success of our business.

Your contact:

Aurelia Faisandel

Please submit your application, including salary expectations and potential date of entry, by submitting the form on the next page.


Working at thinkproject.com - think career. think ahead.