Senior SOC Analyst (Night shifts)

In Cyclad we work with top international IT companies in order to boost their potential in delivering outstanding, cutting edge technologies that shape the world of the future. For an industry leader in the field of technology consulting and digital transformation we are looking for Senior SOC Analyst.

Project information:

• Location: 100% remote
• Working hours: Night shifts only (system will be agreed with the candidate, there may be 12-hour shifts or 8 hours shifts, depending on candidate's availability)
• Type of employment: B2B contract
• Remuneration: up to 175 net + VAT per hour on B2B
• Project language: English

Key components of this project include:

• Implementing shift schedules to guarantee continuous security monitoring without any gaps
• Establishing an on-call rotation to ensure rapid response capabilities outside of regular business hours
• Developing and maintaining alert handling procedures that are tailored to a 24/7 operational environment
• Ensuring coordination between teams during handover periods to maintain consistent situational awareness
• Continuous training and preparedness for SOC analysts to handle incidents at any time, enhancing efficiency in detection and response

Responsibilities:

• Investigation and Support: Conduct investigations and provide remediation support to IT teams

• Procedure Development and Updates: Contribute to the creation and updating of procedures (incident response, crisis management with CERT, etc.)

• Continuous Improvement of Detection Capabilities: Enhance detection capabilities through detection rules, integration of new sensors, logging policies, etc

• Reporting and Dashboard Creation: Produce reports and develop dashboards

• Client Projects: Participate in client security hardening projects

Requirements:

• At least 5 years of experience in a SOC, where you've gained familiarity with various security tools

• Experience with SIEM or XDR Splunk - must have

• Knowledge of other XDR tools like Sekoia, Sentinel, is a big plus

• Security solutions like EDR (Sysmon, CrowdStrike, Sentinel One), proxy, etc.

• Common production environments: network (TCP/IP), systems (Windows, Unix), applications, and Cloud (AWS, Azure)

• Best practices for logging and attack methodologies across various security solutions

• Incident tracking tools (SIRP)

• Advanced investigations (Threat Hunting) is a plus

• Knowledge of SOAR, proficiency in threat hunting, and development skills (e.g., Python) are advantages

• Familiarity with the standard process for handling security incidents, as documented in NIST

• Good command of English (at least B2)

We offer:

• B2B contract with with rate up to 175 PLN NET/hour
• 100% remote job
• Private medical care with dental care (covering 70% of costs) + rehabilitation package. Family package option possible
• Multisport card (also for an accompanying person)
• Life insurance
• Opportunity to development in international company with innovative projects