SecOps Specialist

• Your career matters - You will find ongoing coaching, mentoring, evaluation and feedback to help you grow.
• Amazing colleagues - Work won’t come easy unless we have the right people around us.
• Transparency - We keep you posted every two weeks about our accomplishments and future plans.
• Excellent Life-Work balance (notice the order) - Have commitments outside of work? Let us know - we will make it work for you.
• Regional events and regular socials (in person/remote) to stay connected

• Working with customers to perform active remediation of security findings and proactive management of the security Backlog
• Understand resilient, load balanced and secure platform systems
• Support the continuous improvement of the team’s performance
• Passion for security best practices

• Awareness of Security Engineering and DevOps
• Cloud Security operations experience in at least one: GCP, AWS or Azure for enterprise customers.
• Previous experience on Security Logging & Monitoring, SIEM integration
• Hands on experience in remediation of security issues, eg. basic troubleshooting and remediation where possible
• Previous exposure to Enterprise IT environments (Windows, Linux, etc.)
• Experience in Threat & Vulnerability management
• Awareness on Validating controls and provisioning guardrails
• Previous exposure to Cloud Environments, GCP, AWS, Azure
• Excellent English, written and verbal
• Ability to work well independently as well as effectively within a team
• Ability to speak directly to customers (either technical or business teams), managing customer escalations

• You handle security alerts/incidents that have been escalated by the SecOps Analysts (Tier 2)
• You will handle security alerts and incidents together with your team
• You support the Security Engineer with DFIR assignments, including DFIR readiness assessments
• You participate in the weekly Threat Hunting duty to proactively chase threats through novel Tools, Techniques & Procedures (TTPs)
• You will perform compromise assessments to identify potential compromises and their scope
• You collect Threat Intelligence (IOCs and TTPs)
• You will contribute to the Detection Engineering in SIEM, xDR,
• You contribute to the creation of a scenario in SOAR
• You will be responsible to highlight any improvements that you identify for the processes and procedures related to Security practice
• You will be part of our incident response on call service.

• You have at least 2+ years of experience in a similar position
• As a specialist or engineer, you already have a good knowledge of Security Monitoring with SIEM technologies.
• You are passionate about the following security capabilities: Security Monitoring, Digital Forensics, Incident Response, Threat Intelligence, Threat Hunting
• You already have the reporting and analytical skills with attention to detail.
• You own strong problem-solving skills with the ability to resolve complex technical issues.
• You are a self starter and able to self-motivate
• You are able to work with limited/reduced supervision as well as contribute in a team and professional environment
• You are willing to learn: Google Cloud Platform, Kubernetes, BigQuery, CloudSQL, Compute Engine, Ansible, Docker.
• You want experience with administration of a major cloud platform
• Networking SSL/Encryption/Security protocols are part of your interests
• Availability for on-call

• Annual leave: we start with 25 days and for each year within Appsbroker we grant loyalty days (1 per year, up to 28 days/year) for more fun and family time
• Every year we can pack our laptops and enjoy up to 30 days of work from a destination of our choice
• Meal tickets
• Health Care package
• NN Assurance package (life and health)
• Transportation costs*
• Remote work, whenever possible
• Floating Bank Holidays
• Bonusly Platform
• Bookster Platform
• Google Certifications relevant to each profile
• Intensive and continuous Google training
• Social Events

Appsbroker