NVISO

Role Description As a SOC analyst in Greece (Remote/Athens) in evening shift, your daily activities will include but are not limited to: - Analyze security alerts and report on threats and incidents across various platforms and environments. - Monitor and analyze emerging threats, vulnerabilities and exploits. - Triage, assess, and analyze security incidents related to e.g. phishing and malware. - Participate in incident management calls and coordinate response, triage, recovery, and reporting of incidents. - Participate in security process improvements. - Assist with rule tuning, filter-outs and operational improvements on the existing service offering. Qualifications - You bring experience working in one or more of the following areas: Email Security, Network Security, Intrusion Detection Systems, Threat Intelligence, Threat Detection. - You understand networking and core internet protocols (TCP/IP, HTTP, SSL) and have experience in analyzing malicious network traffic. - You have hands-on experience with the large-scale analysis of log data using SIEM and/or SOAR products and tools, as well as a basic understanding of security automation (SOAR) principles. - You possess excellent communication skills and proven experience in working with multiple stakeholders such as engineering/operations teams, internal business units, external incident response teams and clients throughout the incident lifecycle. - You are fluent in English. - You are eligible for a NATO clearance. Requirements - Experience working in a Security Operations Center. - Experience analyzing large data sets for threat hunting. - Knowledge of security frameworks, e.g. the MITRE ATT&CK. - Experience with analyzing network traffic, endpoint indicators, IOCs. - Basic understanding of cloud infrastructure and cloud identities. Benefits - A training budget of 10.000€ and 10 days every 2 years. - Working and learning from the best people in the European cyber security industry. - An entrepreneurial and agile company, where you will be stimulated and supported in driving new initiatives. - Our commitment to coach and counsel you and help you grow; each employee receives a personal coach within the team. - Flexible working model and home office possibilities (+working abroad options). - Statutory leave plus 5 additional leave days by NVISO. Company Description We are a young team of cyber security professionals who decided to do things differently. With innovation rooted in our foundations, we offer services that are up against the modern adversary and that help you Prevent, Detect & Respond to cyber attacks.

Role Description You will be joining NVISO’s Cloud Security team as a Cloud Security Consultant (Jr.). The ideal candidate has knowledge in Azure or Microsoft 365 cloud services, with a particular focus on security. As part of a team of security consultants and engineers, you will collaborate closely with other colleagues and our customers to understand their business and security requirements, assess their current security posture, and develop tailored cloud security solutions for them. Your tasks will include: - Identity and Access Management (IAM) - Design and implement Microsoft Entra tenant architecture, including identity lifecycle, conditional access, and MFA. - Implement and tune Conditional Access policies, risk-based access, and device compliance integrations with Intune/Endpoint Manager. - Deploy and operate Privileged Access Management (PAM), including PIM for Azure and M365 roles, just-in-time access, and break-glass accounts. - Integrate on-premises identities (hybrid) with secure synchronization and hardening of federation where used. - Platform Security and Hardening (Azure) - Build secure landing zones using Azure Policy, Blueprints/Bicep/Terraform, and management groups. - Enforce baseline controls for networking (NSGs, Azure Firewall, Private Link), compute (secure images, patching), and storage (encryption, private endpoints). - Configure Azure Key Vault for secrets, keys, and certificates management with RBAC and purge protection. - Implement workload isolation, tagging, and resource locks; manage identity-based access (managed identities). - Threat Protection and Monitoring - Deploy and tune Microsoft Defender for Cloud, Defender for Cloud Apps (MCAS), Defender for Endpoint, and Defender for Identity. - Configure Microsoft Sentinel: data connectors, analytics rules, UEBA, watchlists, workbooks, and SOAR playbooks (Logic Apps). - Microsoft 365 Security - Configure and manage Microsoft Purview (Compliance portal) for DLP, information protection labels, data lifecycle, and insider risk. - Implement Exchange Online, SharePoint, OneDrive, and Teams security baselines, safe links/attachments, and anti-phishing policies. - Enforce device compliance via Intune, app protection policies, and conditional access for BYOD and corporate devices. - Secure collaboration and external sharing with sensitivity labels, access reviews, and entitlement management. - Data Protection and Encryption - Design data classification and labelling strategies with Microsoft Purview; enforce DLP across endpoints, Exchange, SharePoint, and Teams. - Ensure encryption at rest and in transit, customer-managed keys (CMK), and double encryption where required. - Implement eDiscovery, legal hold, and audit configurations for regulatory needs. Qualifications - At least 1 year of experience in information security specific to Azure or Microsoft 365 cloud environments. - Experience with Microsoft’s cloud services, including Entra ID, Microsoft Sentinel, and Microsoft Defender for Cloud, Defender for Endpoint, Defender for Cloud Apps, Defender for Identity, Intune, and/or Purview. - Knowledge or experience with cloud security best practices and related frameworks. For example: CIS Benchmarks, Microsoft Cloud Security Benchmark, etc. - Strong communication, documentation and reporting skills. - Relevant current Microsoft cloud certifications. For example: AZ-104, SC-900, SC-200, SC-300, SC-401, or AZ-500. - You hold citizenship in one of the 32 NATO member states. Requirements - Bachelor’s degree in Computer Science, Cyber Security, Information Security, Engineering, Information Technology, or related studies. - Experience in consulting. - Other vendor-agnostic cybersecurity certifications. E.g. SSCP, CompTIA Security+, or equivalent. - Experience with scripting languages such as PowerShell or Python. Benefits - A training budget of 10.000€ and 10 days every 2 years. - Statutory leave plus 5 additional leave days by NVISO. - Flexible working hours. - Monthly-basis benefits. - Regular team-building and fun events throughout the year. - Our commitment to coach and counsel you and help you grow; each employee receives a personal coach within the team, whose role is to ensure your well-being and helps you grow in your career!