Specialist of the department of event monitoring and response to cyber security incidents in DTEK, TOV, Energetichna kompaniya

DTEK Networks is a leading energy company of Ukraine

Employees of the Company provide Ukrainian homes with light and comfort every day, and enterprises with the opportunity to work and develop.

We are looking forCyber Security Event Monitoring and Incident Response Specialist

We are looking for candidates to join our Cyber Security team. You will monitor, analyze and respond to cyber threats, implement solutions to improve security, and work with modern SIEM, IDS/IPS solutions.

The level of the position is negotiable and depends on your professional skills and knowledge, so if you have a higher engineering and technical education in the field of:

• o          Information Technology;
• o       IT security;
• o          Cyber security;
• o          Information security.

And ready to perform the following duties:

• Monitoring cyber security triggers and incidents in real time using SIEM and IDS systems.
• Analysis and classification information security incidents.
• Identification and response to potential and real cyber attacks/cyber incidents;
• Research and organization of response to potential cyber threats, formation of analytical conclusions and proposals for their prevention;
• Configuration, support and optimization of SIEM and IDS OT systems (FortiNet, Nozomi);
• Development of rules, correlation scenarios and correlations reports to identify cyber security threats, violations and incidents;
• Interaction with units to eliminate vulnerabilities;
• Creation of instructions and procedures to ensure the functioning of the monitoring and incident management system;
• Threat modeling to identify vulnerabilities, sources of threats, development of countermeasures and construction of methods of identification and notification of detected activity of sources of threats;
• Processing of state requirements normative legal acts on ensuring cyber security and assessing their applicability to the environment of operational technologies.

And you also fully or partially meet the requirements:

• Practical knowledge and skills in the field of cyber security, IT security.
• Practical experience of working with monitoring systems and detection of cyber security violations.
• Understanding the principles of operation of network protocols (TCP/IP, DNS, HTTP, FTP, etc.).
• Knowledge of the main methods of attacks and their detection methods (phishing, DDoS, SQL-injection, MITM, etc.).
• Experience in creating correlation rules for SIEM.
• Orientation in the requirements and controls of cyber security standards (ISO, NIST, CISA).
• Ability to work in multitasking conditions and quickly react to potential cyber incidents or violations of cyber security policy.
• English language at a level that allows working with systems interface and technical documentation.
• Knowledge in the field of OT systems will be a plus (SCADA, ICS, Modbus protocols, IEC-104).

We will be glad to seeyou are on the cyber security team! 

You will get a unique opportunity to develop your skills and knowledge in the field of cyber security, increase the level of communication, responsibility and organization. 

And most importantly, you will become part of a team that ensures the stability of the energy front!

We are waiting for your resumes with salary wishes

By sending your resume to the vacancy, you agree to the use of your personal data by DTEK within the framework of current legislation of Ukraine. The DTEK company guarantees the confidentiality of applications and the negotiation process when selecting candidates for a vacancy.

Please note that feedback on the results of the vacancy review is provided within two weeks in case of a positive decision regarding your candidacy.

Our energy brings light and comfort to people!