Incident response specialist in EvoPlay

Evoplay isthe largest eco-system of product projects in Ukraine, which offers progressive developments and complex solutions for the online gaming industry.

We do not stand still and are constantly growing. There is now a great opportunity to join our team, namely the Information Security department.

Requirements:

• Experience implementing information security event monitoring and incident response tools;
• Experience implementing and working with Splunk Security;
• Knowledge of the requirements of international information security standards (NIST, ISO 27001, PCI DSS, PA DSS, CIS Controls v8, CSA Cloud Controls, SOC2, OWASP);
• Experience of working in an incident response team, SOC;
• Experience of working with IDS/IPS;
• Experience of working with endpoint security tools (AV, EDR);
• Knowledge of the principles of operation of IS protocols and technologies, such as — IPSec, VPN. TLS, SSL, HTTPS, SSH, PKI;
• Knowledge of the main types of cyber attacks, methods and means of their detection, localization and countermeasures.

Responsibilities:

• Responding to information security incidents security;
• Ensuring compliance with internal policies and information security control;
• Working with various sources of events, writing rules for collecting and normalizing events in the SIEM system, creating correlation rules in the SIEM system, developing parsers for unsupported event sources;
• Developing and maintaining up-to-date documents related to working with information security incidents.

We offer:

• 20 working days of vacation;
• 12 sick days and sick leave compensation;
• Medical insurance;
• Day off;
• Professional development and training;
• Professional plan development.