Job Description
We are seeking an Information Security/Cybersecurity Specialist with 6+ years of experience to join our clients' global security team, 100% remotely from Poland.
This team operates within the global services organization and is responsible for overseeing information security.
The new hire will play a key role in enhancing the company's security operations worldwide and will provide expertise and support to divisions across the globe.
- Applicants should already have the right to work in Poland/the EU
- Applicants should be happy to accept permanent/full time employment (this is not a B2B position - Independent Consultants & Contractors should not apply)
- Applicants should have a professional-level proficiency in English.
Key Responsibilities:
- Conduct full-cycle (beginning to end) incident response triage, including preparation, detection and analysis, containment, eradication and recovery, and post-event activity.
- Monitor threats and vulnerabilities, providing actionable intelligence to mitigate risks.
- Collaborate closely with Security Operations Center (SOC), Threat Intelligence, and Detection teams to ensure seamless communication and response strategies.
- Utilize Endpoint Detection and Response (EDR) tools, particularly CrowdStrike, to manage and investigate security incidents effectively.
- Identify and investigate indicators of compromise (IOCs), indicators of attack (IOAs), and tactics, techniques, and procedures (TTPs), implementing appropriate mitigation strategies.
- Manage and deploy security infrastructure, including alerting, response, and logging systems.
Minimum Requirements:
- ~6 years of experience in Incident Response.
- Have the ability to conduct full-cycle incident response triage, including preparation, detection and analysis, containment, eradication and recovery, and post-event activity.
- Experience in identifying IOCs and TTPs, as well as developing solutions for their detection.
- Experience with alert triage and incident response.
- Proven experience with network and system threats in an enterprise environment.
- Familiarity with threat monitoring, vulnerability management, endpoint protection, and password management solutions.