Oferta pracy

Cyber Threat Engineer - Global Threat Operations

TrustwaveO firmie

  • Warszawa, mazowieckie

  • Ogłoszenie wygasło 6 godzin temu
  • Umowa o pracę
  • Specjalista (Mid / Regular)
Trustwave is a leading cybersecurity and managed security services provider focused on threat detection and response. Offering a comprehensive portfolio of managed security services, consulting and professional services, and data protection technology, Trustwave helps businesses embrace digital transformation securely. Trustwave is a Singtel company and the global security arm of Singtel, Optus and NCS, with customers in 96 countries. For more information about Trustwave, visit https://www.trustwave.com.
Cyber Threat Engineer - Global Threat OperationsNumer ref.: 114755
An MSS Cyber Threat Engineer is a member of the Global Threat Operations  (GTO) team within Trustwave Managed Security Services (MSS). In  addition to possessing technical knowledge, a Threat Engineer interacts  extensively with customers and partners using polite professional  etiquette, and serves as a technical point of escalation within GTO.
Cyber Threat Engineers perform the following duties:
  • Use strong TCP/IP networking skills to perform network analysis and understand detected threats.
  • Analyze  escalated, complex cases involving a pattern of security events from  firewalls, IDS, IPS, SIEM, Web Application Firewall (WAF), and other  security data sources.
  • Resolve intractable technical problems within managed security solutions as part of a sustained improvement project.
  • Create, improve, and document processes for the management and monitoring of security solutions.
  • Tune devices for blocking and reporting based on customer business need.
  • Configure,  manage, and upgrade Intrusion Detection Systems (IDS), Intrusion  Protection Systems (IPS), and Security Information and Event Monitoring  (SIEM) platforms.
  • Baseline threat detection devices for unique customer environments.
  • Test and improve signature-based and other detection methods.
  • Take responsibility for customer satisfaction and overall success of managed services.
  • Respond  to needs and questions of customers in a polite, positive, and  professional manner concerning their managed services, managed devices  and detected threats.
  • Perform rotating on-call duties (nights/weekend rotations).
  • Act as a mentor and escalation point for analysts within the Global Threat Operations team.
Skills & Knowledge Requirements:

Must have intermediate skills/knowledge in some of the following:
  • Security Information and Event Management (SIEM) management
  • Web Application Firewall (WAF) management
  • Unix / Linux and Windows system administration
  • Information security best practices & network security architecture
  • Sourcefire/Snort based security products
  • Current exploit and remediation techniques
  • Web Services Administration
  • TCP/IP networking
  • IP Tables/Packet filter firewalls
Desired experience:
  • Information security or networking
  • Intrusion analysis experience
  • Excellent customer service skills
  • Excellent analytical thinking and problem solving skills
  • Highly motivated
  • English: Demonstrated Fluency
  • Opportunity to work for cybersecurity and IT worldwide leader
  • Work in multicultural and very modern working environment
  • Competitive salary and benefits package: Allianz medical coverage, life group insurance, sport card/ co-financing of holidays
  • Training and development
  • Full time employment contract
  • Choice to work from home or from the office or both

Ogłoszenie archiwalne