A leading global cyber company is looking for the role of Cyber Defense and Response Center (CDRC) manager , you will be responsible for SOC team and security defense methodology and execution. Essential Job Functions – Leads a team of SOC operation and analysts responsible for SIEM/SOC/hunting and incident response processes – Monitoring assets, network, cloud and data ensuring the prevention of cybersecurity events that negatively might impact confidentiality, availability, and integrity. – Leads security incident response efforts by maintaining an in-depth knowledge of common attack vectors, common security exploits, and countermeasures. Responds to all information security relevant events (hacker intrusions, virus infections, denial of service attacks, etc.) Requirements: – At least 3 years of experience in IT security with vast experience in SOC and hunting and a minimum of 2 years’ experience as a team leader – Ability to serve as a technical lead for any incident response and investigation. – Proficiency with forensic techniques and the most commonly used forensic tool sets

Multinational provider of digital technology and transformation, IT and solutions is looking for Cyber Threat Hunter to join the growing SOC group which handles technical research and Intelligence analysis in various aspects of the Cyber Security field.



RESPONSIBILITIES


– Proactively drive hunting and analysis against the dataset available to look for indicators for Cyber Security breaches
– Leverage internal and external resources to research threats, vulnerabilities, and intelligence on various attackers and attack infrastructure
– Use Big Data Analytics platform to identify threats, determine root cause, scope, and severity of each and compile/report findings into a finished analytical product.
– Recommend system tuning/customization and data collection improvements to client
– Work with our Threat Intelligence and Malware solutions to identify threats, develop or recommend countermeasures, and perform advanced network and host analysis in the event of a compromise
REQUIREMENTS


– Operational experience as a Cyber Threat Hunter including deep investigation of logs
– Previous working experience with SIEM systems as part of SOC group
– Experience with computer networking and operating systems
– Experience of current threats, vulnerabilities, and attack trends
– Experience with some/all of: Hadoop, Apache NiFi, Kafka, Storm, Metron, Spark, Ambari, Kibana/Zeppelin, ThreatQ, FireEye Malware analysis
– Familiarity with: Netflow data, DNS logs, Proxy Logs… and many other protocols

One of Israel’s fastest growing startups is looking for a Security Engineer to join the rapidly growing security team. This is an amazing opportunity to make an immediate and real impact on the future of the product.


RESPONSIBILITIES


– Designing and implementing our security infrastructure and tools
Taking initiative and pushing forward security projects that affect the entire company and production environments
– Acting as a source of knowledge and representing the company in front of customers and vendors
– Working closely with infrastructure team, providing security guidance and tools implantation
– Taking part of our incident response team and playing an active role in incident management, mitigation and investigation
– Working with a small team of experienced and highly talented infrastructure and security engineers
REQUIREMENTS


– 2+ years experience as a Security Engineer or equivalent experience
– Extensive knowledge of cloud infrastructure, DevOps and application release cycle (CI/CD
– Extensive knowledge of cloud security solutions including IDS/IPS technologies, WAF, SIEM , identity management, monitoring and more
– Previous programming and scripting experience – advantage

Looking for SIEM Expert to be part of SOC group, focusing on SIEM technologies. The role requires a detail-oriented professional who will provide. senior level SIEM support to our pre-sales Team and delivery of SIEM solutions.



RESPONSIBILITIES:


– Understand customer requirements and recommend best practices SIEM solutions
– Offer consultative advice in security principles and best practices related to SIEM operations
– Assist in the creation and verification of Statement of Work (SOW) documentation
– Assist pre-sales with SIEM sizing, Architecture, RFP’s and client technical meetings
– Deploy and configure the SIEM platform as per Vendor guidelines and industry Best Practices
– Verification of data of log sources in the SIEM follow the Common Information Model (CIM)


REQUIREMENTS


– University Degree in Information Security or equivalent work experience
– Minimum 4 years experience in a similar role
– Experience with any two or more of the following SIEM products (in order of preference)
– Preferred SIEM Vendor certification of Administrator
– Experience and proficient in UNIX/Linux and/or Regular Expressions.
– The following certifications would be considered as advantage: CISSP, CISM, CompTIA Security+, CEH, GSEC