Lead Operations Specialist (SOC) in Comfy

Hello!

COMFY is looking for a Lead SOC Operations Specialist.

Tasks with you will work:

• Working in SIEM Elastic Security (search, dashboards, reports);
• Interaction with the outsourced SOC team (AKORD GROUP);
• Incident management (operational level):

1. qualification of information security events;
2. management of incident workflow and escalation procedures;
3. communication with internal teams;
4. post-incident analysis and recommendations for improvement.

• Incident response:

1. support of response and containment actions;
2. Threat hunting and IOC analysis;
3. evidence collection and digital investigations;
4. action coordination from business continuity.

• Development of integration and automation:

1. connection of protection systems to SIEM;
2. participation in SOAR development and implementation playbooks;
3. behavioral analysis and AI technologies in security.

• State of security reporting.

From you we expect:

• Knowledge of Information Security Management Center (SOC) processes,
• Practical experience in SIEM systems (Elastic Security is a priority): system deployment, configuration, creation of search queries, dashboards, correlation rules;
• Practical experience in incident management and support (qualification of events, documentation of incidents, collection of artifacts, implementation of actions to contain malicious activity, etc.);
• Integration of SIEM and SOAR is desirable;
• Ability to use tools for finding vulnerabilities (vulnerability scanners): planning scans, preparing reports, preparing recommendations for elimination.

We offer:

• Availability of a social and compensation package in accordance with the Labor Code of Ukraine;
• Acquisition of new professional knowledge, wide functionality of the work area;
• Competitive salary level;
• Work schedule Mon-Fri from 9:00 a.m. until 18:00.

Don't worry, and leave your resume soon

GO TO BE #NAMBERVAN!