123pracovat

Pracovní nabídka

RFE/RL is looking for an IT Security (SOC) Analyst to join our IT Security department. It is an exciting opportunity to contribute to RFE/RL’s mission by supporting the security operation to keep our IT operations and data safe. So, if you are a hands-on IT Security Analyst with incident focus that could provide analysis capability to RFE/RL IT Security, please let us know about yourself!

What you would do:

• Act as an escalation point within the SOC function, taking technical ownership of escalated security events and incidents and leading in-depth investigation and response through to resolution, in coordination with relevant stakeholders.
• Perform in-depth analysis and investigative activities to validate alerts, determine impact, and identify root causes of security events.
• Collaborate closely with internal teams, incident coordination functions, and external service providers to ensure a consistent and effective approach to security operations.
• Provide clear and accurate technical input during security incidents, including documentation, reporting, and post-incident analysis.
• Contribute to the development and improvement of incident response procedures, playbooks, and technical standards aligned with industry best practices.
• Support the continuous maturity of security detection and response capabilities through the refinement of processes, use cases, and day-to-day operational practices.
• Maintain situational awareness of the organization’s security posture and the evolving threat landscape, applying this insight to inform response actions and operational priorities.
• Support additional security operations initiatives as required.

What experience and knowledge you have:

• 3+ years of experience in SOC analyst roles, preferably within an internal SOC environment.
• Practical experience in analyzing and responding to security incidents within enterprise-scale environments, including on-premises, cloud, or hybrid infrastructures.
• Hands-on experience working with security monitoring and response technologies (e.g. SIEM, EDR/XDR).
• Experience performing in-depth technical analysis to validate alerts, assess impact, and support incident containment and remediation activities.
• Experience performing day-to-day security operations activities, including the analysis, investigation, and handling of security events and alerts across multiple sources.
• Working knowledge of operating systems, authentication flows, and networking fundamentals relevant to security investigations, including TCP/IP, DNS, and endpoint and server behavior.
• Exposure to cloud platforms and their security logging and control mechanisms, with the ability to interpret security signals in cloud-based environments.
• Familiarity with scripting or automation (e.g. Python, PowerShell, or similar) to support investigation, response, or operational tasks.

Languages:

• English is a must, Czech great to have.

This is a locally recruited full-time position on a one-year assignment initially, with the possibility of extending to an open-ended contract after one year. The opportunity is open preferably to applicants who are in the Czech Republic and do not need a work visa. The place of work is RFE/RL Prague’s office with a hybrid working model of in the office and remote work in the Czech Republic.