Senior Cyber Security Responder - L3 Job Details | curium
- Recruiter
- curium
- Location
- Czech Republic
- Salary
- EUR 107.00 per day
- Posted
- 26 Nov 2024
- Closes
- 02 Dec 2024
- Ref
- -8587576758659819148
- Job Type
- Cyber Security
- Employer Sector
- Technology, IT & Telecoms
- Contract Type
- Permanent
- Hours
- Full Time
Redefining the experience of cancer through our trusted legacy in nuclear medicine
At Curium, we have a singular focus to develop, manufacture and supply world-class radiopharmaceutical products around the globe. We strive to innovate further in nuclear diagnostics and therapies so we can enhance the lives of people with cancer.
Every day we see the impact that our treatments offer and the potential they have to provide a world beyond cancer and other debilitating conditions. We continue to push boundaries and reach new heights in everything we do, supported by significant investment into new technologies and therapies.
Summary of Position
Senior Cyber Security Responder - L3
Essential Functions
• Participate and Manage IT security operations for the day to day activities.
• Monitor and operate Security tools such as IPS, EDR, SIEM, VM.
• Provide guidance and escalation support on all functions for the security.
• Develop and track security operations metrics (KPI's, Alerts levels, Communication)
• Analyze security indicators of compromise, analyze alert data, and take appropriate incident response actions with the CTO.
• Mature, design, and implement improvements to the security operations program (Improve the tools and methodologies for securing the infrastructure).
• Maintain an understanding of the current vulnerabilities, response, and mitigation strategies used in security operations within the Global Infrastructure team.
• Performing Treat Hunting and proactive response
• Adhere to internal company policies and processes advised by respective internal teams; Compliance, HR SOPs, etc
Requirements
• 3+ years hand-on experience in incident detection and response, threat hunting and security monitoring.
• Experience with definition of use cases for SIEM development team is necessary.
• Extensive experience with Microsoft Defender family or other XDR solutions
• Ability to identify and propose solutions that improve security capabilities and drive operational efficiencies.
• Familiarity with common network, system, infrastructure, and web application attack vectors and related mitigation strategies.
• Proven experience with commonly used forensic and IR toolkits
• Effective communication in English to translate technical risks and exposures to the business
• Ability to independently manage security projects
• Excellent analytical, troubleshooting, and interpersonal skills
Nice To Have:
• Advance knowledge of experience with Nessus and Azure security design
• CISSP certification
• Advanced certifications such as SANS GIAC/GCIA/GCIH and/or SIEM-specific training and certification would be advantage
• Familiar with Mittre att&ck framework, NIST Incident Response process or ISO27000 standards
Benefits
Disclaimer
The above statements are intended to describe the general nature and level of work being performed by employees assigned to this classification. They are not intended to be construed as an exhaustive list of all responsibilities, duties and skills required of employees assigned to this position.
Equal Opportunity Employer
Curium is an equal opportunity employer and believes everyone deserves respect, dignity and equality. All applicants will be considered for employment without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran or disability status.
Learn more about Curium Prague, Czech Republic
At Curium, we have a singular focus to develop, manufacture and supply world-class radiopharmaceutical products around the globe. We strive to innovate further in nuclear diagnostics and therapies so we can enhance the lives of people with cancer.
Every day we see the impact that our treatments offer and the potential they have to provide a world beyond cancer and other debilitating conditions. We continue to push boundaries and reach new heights in everything we do, supported by significant investment into new technologies and therapies.
Summary of Position
Senior Cyber Security Responder - L3
Essential Functions
• Participate and Manage IT security operations for the day to day activities.
• Monitor and operate Security tools such as IPS, EDR, SIEM, VM.
• Provide guidance and escalation support on all functions for the security.
• Develop and track security operations metrics (KPI's, Alerts levels, Communication)
• Analyze security indicators of compromise, analyze alert data, and take appropriate incident response actions with the CTO.
• Mature, design, and implement improvements to the security operations program (Improve the tools and methodologies for securing the infrastructure).
• Maintain an understanding of the current vulnerabilities, response, and mitigation strategies used in security operations within the Global Infrastructure team.
• Performing Treat Hunting and proactive response
• Adhere to internal company policies and processes advised by respective internal teams; Compliance, HR SOPs, etc
Requirements
• 3+ years hand-on experience in incident detection and response, threat hunting and security monitoring.
• Experience with definition of use cases for SIEM development team is necessary.
• Extensive experience with Microsoft Defender family or other XDR solutions
• Ability to identify and propose solutions that improve security capabilities and drive operational efficiencies.
• Familiarity with common network, system, infrastructure, and web application attack vectors and related mitigation strategies.
• Proven experience with commonly used forensic and IR toolkits
• Effective communication in English to translate technical risks and exposures to the business
• Ability to independently manage security projects
• Excellent analytical, troubleshooting, and interpersonal skills
Nice To Have:
• Advance knowledge of experience with Nessus and Azure security design
• CISSP certification
• Advanced certifications such as SANS GIAC/GCIA/GCIH and/or SIEM-specific training and certification would be advantage
• Familiar with Mittre att&ck framework, NIST Incident Response process or ISO27000 standards
Benefits
- 200 hours of vacation (equivalent to 25 days)
- 5 sick days per year
- Annual Bonus
- Spot Bonus
- Equal gender pay
- Cafeteria Benefity (online benefit portal) - 1750 CZK net/month
- Cefeteria Compensation Bonus (after trial period) - 4750 CZK gross/quarter
- Flexible start and end of working hours
- Home office - max 3 days/week
- Meal card contribution on 107 CZK/day worked (100% paid by Curium)
- Multisport card (optional benefit through the cafeteria system)
- Contributions to pension (3% from salary)
- Employee referral bonus program
- Contributions to ACCA/CIMA/ICU qualification
- Financial support for upskilling qualification
- Contributions to accident and life insurance (100% paid by Curium)
- Company events and activities (social events, volunteering, and teambuilding)
- Coffee, variety of tea, fruit and vegetables daily at the workplace
- Friendly international environment
Disclaimer
The above statements are intended to describe the general nature and level of work being performed by employees assigned to this classification. They are not intended to be construed as an exhaustive list of all responsibilities, duties and skills required of employees assigned to this position.
Equal Opportunity Employer
Curium is an equal opportunity employer and believes everyone deserves respect, dignity and equality. All applicants will be considered for employment without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran or disability status.
Learn more about Curium Prague, Czech Republic