RTB House logo
RTB House

RTB House is a global company that provides state-of-the-art marketing technologies for top brands and agencies.

Junior SOC Security Engineer

Security OperationsSecurity OperationsFull TimeRemoteJuniorTeam 1,001-5,000Since 2012H1B No SponsorCompany SiteLinkedIn

Location

Poland

Posted

6 days ago

Salary

0

Seniority

Junior

Bachelor Degree1 yr expEnglishPolishDNSPythonSplunkTCP/IP

Job Description

Junior SOC Security Engineer

RTB House

• Support the operational activities of the security team by monitoring IT infrastructure • Analyzing and triaging alerts generated by SIEM and EDR systems • Escalating incidents in accordance with established procedures • Analyzing malware payloads, identifying Indicators of Compromise (IoCs) • Performing behavioral analysis of users and systems to detect anomalies and unauthorized activity • Actively support the team in the area of AI-driven threat hunting by participating in proactive threat hunting using AI-based tools • Documenting findings while recommending new detection rules

Job Requirements

  • Experience in a SOC environment at an L1 level (min, 1 year)
  • Fluency in English & Polish (min. B2)
  • Threat analysis and incident response skills
  • Knowledge of SIEM tools (Splunk Enterprise Security)
  • Knowledge of XDR/EDR solutions (SentinelOne)
  • Knowledge of network protocols (e.g., TCP/IP, HTTPS, DNS)
  • Willingness to develop skills towards automation and scripting (Python/Bash – nice to have)
  • Knowledge of frameworks such as MITRE ATT&CK and NIST

Benefits

  • Cutting-edge Technology: Engage with the latest technologies on large-scale, dynamic projects
  • Wellbeing: extremely flexible working conditions - you work when it is convenient for you and devote as much time as you can; you can work fully remotely
  • Purpose-Driven Work: being at the heart of the system, your growing knowledge and competencies will be used in practical applications directly connected to business results
  • Flexible contract cooperation model (B2B / Contract of Mandate)

Related Categories

Related Job Pages

More Security Operations Jobs

Full TimeRemoteTeam 10,001+H1B Sponsor

Role Description En Accenture, el corazon del cambio, buscamos un Security Operations Lead con experiencia en SAP Security y Governance, Risk & Compliance (GRC) para liderar la operación de seguridad SAP dentro de un entorno corporativo global. La posición tendrá interacción directa con stakeholders de negocio, liderará equipos de trabajo y será responsable de garantizar el cumplimiento de controles de acceso, segregación de funciones y requerimientos regulatorios dentro del ecosistema SAP. - Liderar las operaciones de seguridad SAP y las actividades relacionadas con acceso e identidades. - Supervisar la creación, modificación, bloqueo y desbloqueo de usuarios SAP. - Gestionar la asignación y mantenimiento de roles y autorizaciones. - Diseñar y optimizar modelos de roles alineados a requerimientos de negocio y seguridad. - Administrar procesos de Segregation of Duties (SoD) e identificar riesgos asociados. - Gestionar controles de acceso, Process Control y Access Control. - Monitorear y administrar procesos de Emergency Access Management (Firefighter). - Dar soporte a auditorías internas, externas y controles SOX. - Elaborar y presentar métricas operativas y reportes ejecutivos. - Actuar como punto de contacto frente al cliente para temas de seguridad SAP. - Liderar equipos y coordinar actividades con diferentes áreas funcionales y técnicas. Qualifications - Experiencia sólida en SAP Security Operations. - Experiencia en SAP GRC (Governance, Risk & Compliance). - Conocimiento de Access Control y/o Process Control. - Experiencia en diseño y administración de roles SAP. - Conocimiento avanzado de Segregation of Duties (SoD). - Experiencia en cumplimiento regulatorio y controles de auditoría. - Conocimiento de Emergency Access Management (Firefighter). - Experiencia trabajando directamente con clientes. - Experiencia liderando equipos de trabajo. - Capacidad para gestionar métricas e indicadores operativos. - Inglés avanzado (C1). Requirements - Perfil consultivo con visión de negocio. - Excelentes habilidades de comunicación y gestión de stakeholders. - Capacidad para balancear riesgos, compliance y necesidades operativas. - Fuerte orientación a resultados y liderazgo. Company Description Accenture es un empleador que promueve la igualdad de oportunidades y valora la diversidad. Todas las decisiones de empleo se toman sin consideración de raza, religión, color, sexo, edad, identidad de género, orientación sexual, discapacidad u otra característica protegida por la ley.

Mexico
Palo Alto Networks logo

Chief Security Officer

Palo Alto Networks

Established in 2005, Palo Alto Networks is a global leader in cybersecurity and threat intelligence, offering expertise that helps clients achieve safe digital

Role Description The Field Chief Security Officer (CSO) for CEUR is a premier cybersecurity expert responsible for cultivating trusted advisor relationships with customer CISOs and other senior executives. In this role, you will articulate the strategic value of Palo Alto Networks, guiding influential companies in advancing their cyber resilience. You will act as a key thought leader, representing the company at industry events, providing strategic counsel on key accounts, and influencing our product and market direction based on regional insights. Key Responsibilities - Act as a CISO advocate, building trusted relationships and providing peer-level guidance on security strategy, board-level messaging, and stakeholder alignment. - Develop and deliver compelling C-level messaging on cybersecurity trends and best practices, strategically positioning Palo Alto Networks' solutions to address customer challenges. - Proactively collaborate with account teams on strategic opportunities, owning executive peer relationships to accelerate sales cycles and drive platform adoption. - Serve as a thought leader in the CEUR region by delivering keynotes at industry events and producing content that elevates the market's understanding of cybersecurity. - Translate complex technical concepts into digestible, actionable insights for C-level executives to support their strategic decision-making. - Integrate the Palo Alto Networks platform value into customer transformation plans, developing business target architectures that address long-term cybersecurity strategies. - Provide cross-functional guidance to internal teams, including Product Management and Marketing, offering insights into local market trends and long-term expectations. Qualifications - 15+ years of experience in cybersecurity, with significant experience in a senior leadership role (e.g., CISO, Field CSO, Security Architect). - Demonstrated experience engaging with and advising C-level executives and their boards on cybersecurity strategy and risk. - Deep expertise in security frameworks (NIST, ISO27001, etc.) and data privacy regulations relevant to the CEUR region. - Strong technical knowledge across multiple security domains, including Network Security, SASE, Cloud Security, and SOC transformation. Preferred Qualifications - Prior experience as a CISO for a large enterprise organization. - Established professional network of senior IT and security executives within the CEUR region. - Proven track record of public speaking and thought leadership (e.g., conference presentations, published articles). - Advanced degree (e.g., MBA, Master's in Cybersecurity) or elite industry certifications (e.g., CISSP, CISM, CCISO). Our Commitment We’re trailblazers that dream big, take risks, and challenge cybersecurity’s status quo. It’s simple: we can’t accomplish our mission without diverse teams innovating, together. We are committed to providing reasonable accommodations for all qualified individuals with a disability. If you require assistance or accommodation due to a disability or special need, please contact us at accommodations@paloaltonetworks.com. Palo Alto Networks is an equal opportunity employer. We celebrate diversity in our workplace, and all qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or other legally protected characteristics. All your information will be kept confidential according to EEO guidelines. Is role eligible for Immigration Sponsorship? No. Please note that we will not sponsor applicants for work visas for this position.

Eastern Europe
InstantServe LLC logo

Security Operations Next-Gen SIEM Analyst

InstantServe LLC

Changing People, Processes & Perceptions.

Full TimeRemoteTeam 51-200H1B No Sponsor

Role Description This project will optimize the agency's CrowdStrike SIEM and related CrowdStrike services to improve threat detection, monitoring, and response capabilities. The contractor will expand and tune telemetry, integrate additional high-value log sources, enhance security dashboards, and support the rollout of additional CrowdStrike services. The effort will increase visibility into endpoint and security risk, improve signal quality and correlation, and provide security leadership with clear insight into security operations effectiveness and overall risk posture. Expected Outcomes - Expanded and optimized CrowdStrike SIEM telemetry coverage - Integration of additional high-value log sources - Improved dashboards for operational and executive visibility - Enhanced detection fidelity and monitoring effectiveness - Clearer insight for leadership into endpoint risk and security operations performance Duties to Be Performed - Assess current CrowdStrike SIEM configuration, telemetry coverage, and log ingestion - Enable and tune additional CrowdStrike telemetry to improve visibility and signal quality - Identify and integrate new high-value log sources into CrowdStrike SIEM - Develop and refine security dashboards aligned to SOC and executive use cases - Assist with technical enablement and rollout of additional CrowdStrike services - Validate data quality, parsing, and correlation within the SIEM - Coordinate with Security Operations, IT Operations, and system owners - Identify gaps, risks, and improvement opportunities in monitoring and detection - Provide weekly status updates and monthly executive-level progress summaries - Deliver supporting documentation and recommendations to sustain improvements Deliverables - Summary of work performed and capabilities delivered - Documentation supporting all telemetry enablement, log integrations, and dashboard implementations - Measurable improvements in monitoring, detection, or visibility - Recommendations for future enhancements or next-phase efforts Qualifications - Demonstrated skill with documentation, reporting, and knowledge transfer - Experience with Stakeholder Engagement, and Executive Communication - Experience in SIEM Detection Engineering and Alert Optimization - Experience in Log Source Integration and Data Normalization - Hands-On Experience with CrowdStrike SIEM and Dashboard Development - Hands-On Experience with SIEM and Dashboard Development

United States
Job Closed
Full TimeRemoteTeam 1,001-5,000Since 2013H1B Sponsor

• You will respond to incidents as part of a distributed 24x7 operations and on-call schedule. • You will triage and respond to security events and alerts, ensuring quick and effective containment. • You will contribute to security investigations, conducting analysis and forensics across a range of data sources to determine the timeline and impact of security events. • You will build automations, including leveraging AI and agentic platforms, to deliver autonomous capabilities, expedite your work and scale the impact of the team. • You will communicate technical decisions through design docs and tech talks, and mentor junior security responders via security guidance, design reviews and code reviews.

Belgium