Security Engineer
budapest
Ideiglenes 3-5 év szakmai tapasztalat Hibrid
About the Role: In this role, you’ll work in our Partner’s international team, where they deliver deep technical and industry expertise to a wide range of public and private sector clients around the world. These centers offer their clients locally-based skills and technical expertise to drive innovation and adoption of new technology.
Tasks:
- Preparing, leading and implementing complex automation and tuning activities,
- Act as a primary point of contact when it comes to troubleshooting, designing, and deploying security workbooks, playbooks, data connectors and analytical rules,
- Collaborating with cross function teams internally and with clients. Mainly with incident response analysts, threat hunters, architects and security consultants,
- Creating weekly and monthly (executive) engineering reports about fine-tuning and automation of detection rules and efficiency of SOC measured against agreed meters,
- Responsible of understanding for contractual baselines and pushing forward to achieve them via driving necessary meetings and development tasks.
Requirements:
- Hands-on experience with managing Microsoft Cloud Security Suite such as Azure AD, Sentinel (SIEM), Defender (XDR) and MDE,
- Capability of composing and understanding advance KQL,
- Good knowledge of enterprise SOC structure, SOC-as-a-service,
- Good knowledge of use case and workflow management,
- Microsoft Certified SC-900 and AZ-900,
- Understanding of VPN, IDP/IPS, WAF and Firewall systems,
- Understanding of Cyber Kill Chain and MITRE ATT&CK frameworks.
- Familiar with Zscaler, Checkpoint, Fortinet, Cisco, Crowstrike, Proofpoint, CyberArk systems and their logs,
- Familiar with MaGMa framework, IoT Security, SIGMA rules or GitHub,
- Experience in malware analysis or reverse engieenering,
- Microsoft Certified SC-100, SC-200, SC-300, SC-400, AZ-500.
