Role:
Cyber Security Operations Specialist
Summary:
The Cyber Security Operations Specialist focused on Telemetry, SIEM Integration, and Logging will be responsible for the design, implementation, and management of security monitoring and logging systems. This role involves integrating and optimizing Security Information and Event Management (SIEM) solutions, managing telemetry data, and ensuring comprehensive logging across the organization's IT environment to enhance threat detection and response capabilities.
Roles & Responsibilities:
SIEM Integration and Management:
•Design, implement, and maintain SIEM solutions (e.g., Splunk, IBM QRadar, ArcSight, Microsoft Sentinel).
•Integrate various data sources into the SIEM, including network devices, servers, applications, and cloud services.
•Develop and tune SIEM use cases, correlation rules, and alerts to detect potential security incidents.
Telemetry and Logging:
•Proficiency in logging and telemetry tools (e.g., ELK Stack, Fluentd, Prometheus).
•Collect, process, and analyze telemetry data from diverse sources to provide actionable security insights.
•Ensure the integrity, availability, and confidentiality of telemetry data.
•Develop dashboards and reports to visualize telemetry data and support security operations.
•Implement and manage logging infrastructure to capture security-relevant data across the IT environment.
•Develop and enforce logging policies and procedures to meet compliance and security requirements.
Security Monitoring and Incident Response:
•Experience with security monitoring and incident response methodologies.
•Collaborate with the Incident Response team to enhance detection and response capabilities.
•Implement automation scripts and tools to streamline security monitoring and incident response processes.
Optimization and Continuous Improvement:
•Optimize the performance and efficiency of SIEM and logging systems.
•Continuously improve monitoring and logging processes through feedback and lessons learned.
•Work closely with IT and security teams to ensure effective integration of security monitoring and logging solutions.
Stakeholder Communication and Training:
•Communicate effectively with stakeholders, providing regular updates on security posture and incidents.
•Provide training and support to team members on SIEM, telemetry, and logging best practices.
•Maintain comprehensive documentation of SIEM configurations, logging setups, and monitoring processes.
Compliance and Auditing:
•Ensure compliance with relevant regulations and standards (e.g., GDPR, PCI-DSS, HIPAA) regarding logging and monitoring.
•Conduct regular audits to verify the effectiveness of security monitoring and logging controls.
Qualifications:
•Proven experience in security operations, including SIEM integration and management, logging, and telemetry.
•Strong knowledge of SIEM platforms (e.g., Splunk, IBM QRadar, ArcSight, Microsoft Sentinel) and their integration.
•Understanding of network protocols, operating systems, and security frameworks.
•Hands-on experience with scripting and automation (e.g., Python, PowerShell) to enhance security operations.
•Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), GIAC Security Operations Certified (GSOC), or SIEM-specific certifications.
Preferred Skills:
•Strong analytical and problem-solving skills.
•Excellent communication and teamwork abilities.
•Ability to manage multiple tasks and projects simultaneously.
•Familiarity with cloud security and DevSecOps practices.
Benefits
•Fixed benefits:
Flexible working hours and a hybrid model.
We value your time and lifestyle preferences, so you can choose whether you want to work entirely remotely or from our offices in Cluj-Napoca, Oradea, and Bucharest.
•Sports benefit
We encourage you to have a healthy lifestyle. We'll reimburse you a maximum of 150 lei/month from your favorite sporting activity: whether it's football, climbing, gym or other sports.
•Private health insurance is provided by Signal Iduna.
•Birthday gifts
•Gift for newborn baby
•Development and learning programs in accordance with your job description.
A monthly budget you can use to purchase flexible benefits through the Benefit platform.
•Vacation vouchers for tourism in Romania reimbursed up to (max. RON 18.000/year)
•Meal tickets
•Private pension
•Culture vouchers (for festivals, theaters, cinemas, bookshops etc.)
•Courses and certifications according to your wishes (driving school, accounting, IT, foreign languages, etc.)
Any Graduate