123pracovat

Pracovní nabídka

Job Summary:

Join the Ultra Clean Technology information security team as a Junior Security Operations Center (SOC) Engineer, where you will be an integral part of a global security team, providing 24/7 cybersecurity monitoring, analysis, and response. Your role will focus on identifying and mitigating cybersecurity threats while gaining valuable experience in security operations. This is a fantastic entry point into the cybersecurity field, with opportunities to develop technical and analytical skills in a collaborative environment.

Essential Duties and Responsibilities:

Security Operations Support

• Monitor security alerts and incidents using tools such as SIEM, endpoint protection platforms, intrusion detection/prevention systems, and user behavior analytics.
• Analyze security events to determine the level of risk and escalate incidents as needed.
• Assist in managing malware defenses, endpoint protection, and boundary defense systems (e.g., firewalls, network segmentation).
• Support identity and access management processes, ensuring adherence to the principle of least privilege.
• Conduct routine monitoring of email and web protection systems to identify potential threats.

Threat Intelligence Monitoring

• Stay informed about the latest cybersecurity threats, vulnerabilities, and tactics, techniques, and procedures (TTPs) to proactively identify and respond to potential threats.

Incident Response

• Participate in incident detection, triage, containment, eradication, and recovery activities.
• Support the establishment of procedures for incident detection, containment, eradication, and recovery.

Threat Hunting

• Participate in proactive, systematic searches within the corporate application infrastructure to detect and contain advanced threats missed by conventional security solutions.

Vulnerability Analysis

• Assess the potential impact of high-risk vulnerabilities and assist in prioritizing remediation activities.

Collaboration

• Work with members of the global IT staff to remediate incidents, improve security posture, and optimize monitoring processes.

Documentation

• Document events/incidents, actions taken, and outcomes to improve the enterprise knowledge base and ensure compliance.

Knowledge, Skills and Abilities:

Technical Skills

• Good knowledge of basic network protocols, such as TCP/IP, UDP, DNS, HTTP/S, and SSH.

• Fundamental knowledge of SIEM/SOAR platforms, including query languages, event correlation rules, reporting, and log stream analysis.

• Understanding of common Tactics, Techniques, and Procedures (TTPs) as outlined in the MITRE ATT&CK Framework.

• Familiarity with common attack vectors, such as malware, phishing, and ransomware.

• Basic understanding of firewall capabilities, IDS/IPS, and next-generation antivirus solutions.

Soft Skills

• Strong analytical and "outside-the-box" thinking with attention to technical detail.
• Good communication skills in both spoken and written formats.
• Solid documentation skills for incident handling and collaboration in a follow-the-sun model.
• Willingness to work outside regular business hours in case of a major incident scenario.

Education and Qualifications

• Bachelor’s degree in information technology, cybersecurity, or a related field (or equivalent experience).
• 1–3 years of experience in IT, cybersecurity, or a related area is preferred but not required.
• Security certifications, such as CompTIA Security+, Certified SOC Analyst (CSA), or GIAC certifications are a plus.
• Familiarity with industry standards, such as ISO 27001, NIST, and CIS frameworks, is a plus.

We offer:

• Family character of the company with custom production outside the automotive industry
• Individual approach
• Facilities of a newly built production hall in Doubí in Liberec
• High quality employment
• Flexible working hours
• We will take into account your experience with attractive benefits (quarterly financial bonuses, meal allowance CZK 140,-/day, transport allowance, Multisport card, CZK 5880,-/year contribution to Pluxee card, company portable season tickets for leisure activities - hockey, football, iQLANDII, ZOO, subsidized refreshments at the workplace, education, company events)