Ta oferta pracy jest już nieaktualna.
Zapraszamy do wysłania życiorysu - skontaktujemy się w przypadku wznowienia projektu lub podobnej oferty.
Zapraszamy do wysłania życiorysu - skontaktujemy się w przypadku wznowienia projektu lub podobnej oferty.
Tasks:
- Acts as MS technology Subject Matter Expert in SOC.
- Manages and ensures compliance in M365 and Azure services including:
- Email security,
- Data Loss Prevention,
- Compliance Center,
- Attack Surface Reduction,
- MS Defender,
- Cloud App Security,
- Risk Management.
- Intakes other MS services identified as IT Security related into the IT Governance SOC man-agement.
- Initiates appropriate changes through regular process in DB Schenker. Checks whether changes were appropriately applied.
- Ensures that IT Security incidents are opened as a response to identified security events in MS environment (either open them manually or ensure proper automation). Coordinates with SOC colleagues to record, prioritize and initiate incident tickets.
- Supports Vulnerability Management and Outdated Software processes.
- Provides functional oversight of dedicated SOC resources in Regions, including training and guidance.
- Maintains records of security monitoring and incident response activities, using case man-agement and ticketing technologies.
- Monitors and analyzes Security Information and Event Management (SIEM) to find security issues for remediation. Creates Security Information Event Management (SIEM) tool rules.
- Recommends changes to Standard Operating Procedures (SOP) and other similar documen-tation, authors appropriate SOP's if necessary.
Requirements:
- Minimum 3 years of related experience in information technology and/or information security
- Microsoft Defender experience
- Having selected certificates from the group: Microsoft MS-500, SC-200, SC-100
- Very good understanding of functionality of Microsoft Azure, Intune, Office 365 family and network technologies.
- Understanding of Cyber Security Incident Response and Network Security Monitoring. Un-derstanding of computer networking TCP/IP.
- Knowledge of Intrusion Detection Systems IDS and SIEM technologies, Antivirus, Firewalls, ZScaler, Endpoint Security and Cisco Sourcefire and similar tools preferred.
- Good analytical and problem-solving skills.
- Good people skills to interact with team members, management, and SOC stakeholders.
- Ability to think outside of the box when the need arises a plus.
- Ability to work independently and effectively under time pressure, stress conditions.
- Diplomacy when dealing with other parties.
We offer:
- Attractive salary
- Mostly remote work (being in Warsaw office only if necessery)
- Work in a dynamically developing company, which is a global leader in the transport and logistic sector
- Various challenges at work
- Great atmosphere
- Medical healthcare package
- Sport Card
- Life insurance
- Holiday Bonus
- Annual Bonus
- Work-life Balance