SOC Cyber Threat Senior Expert

What you’ll do

• Coding Experience in Scripting & programming languages (such as Java, Bash, Python, PowerShell,

etc.) to use these skills to aid in responding to incidents involving Windows, Linux, and Mac hosts,

as well as automate common analytical processes to reduce analyst time and avoid repetitive

incident response tasks,

• Making assessments on Information Security processes and taking resposibility of implementing

improvements on related systems,

• Experience in Scrum is a plus

• Deploy, configure, and maintain security technologies SOAR, SIEM solutions to

assess each of the cybersecurity technology’s responses

• Develop open-source and vendor based threat detection scenarios

• Develop tooling for Detection Development Life-Cycle

• Research on new threat hunting methodologies, tools, and technologies

• Onboard and maintain detection and hunting products (SIEM, SOAR, etc.)

• Manage and maintain internal SOC technologies and processes

• Effectively use threat intelligence services and malware sandboxes for hunting new malware threats

• Experience working with security technology and products such as Firewalls, IDS, IPS, VPC,

• Excellent written skills with demonstrated ability to write reports. Including the ability to discuss

findings in a risk perspective with clear remediation advice specific to the client’s environment.

Who you are

• Bachelor’s Degree in engineering departments (preferably Electronics or Computer Engineering),

• 5+ years of experience in performing hands-on security engineering, consulting, team management,

penetration testing, and/or adversary simulation, red teaming exercises, vulnerability assessments in

complex operational ICT environments,

• Familiarity with industry standards like OWASP TOP10, CVSS, CIS, NIST etc.

• Excellent understanding of attacker tools, tactics and techniques and referencing on MITRE ATT&CK,

strong knowledge of MITRE Shield.

• CISSP, CISM, OSCP, CEH level is expected.

• Experienced in SIEM products and SOAR products.

• Experience working with Threat modeling (e.g., STRIDE, PASTA, FAIR, Security Cards), operational

threat intelligence, and attack framework standards (e.g., MITRE ATT&CK) with a good understanding

of the Cyber Kill Chain and pervasive threat attack methods and remediation,

• Experience working in an industry standard Security Operations Center or similar environment

providing incident handling and response, intrusion detection, analysis, cyber threat intelligence,

threat determination, and mitigations processing and tracking, working with several network and

system security technologies to include Elasticsearch, data analytics platforms, endpoint tools,

network technologies, and SIEMs

• Experience developing detection logic for enterprise SIEM systems and with exploitation techniques

and use case development

• Experience in the detection and response to malicious activity using log data and alerts from

cybersecurity solutions, systems, and network devices

• Experience extracting and analyzing forensic artifacts across Windows, Mac, and Linux operating

systems

• Experience of incident response processes, and threat intelligence cycles, including understanding

of IP network traffic, security vulnerabilities, different exploitation techniques, and malware behaviors

(including communications protocols)

• Understanding of Amazon Web Services cloud environments and their security controls,

microservices architectures & distributed Platforms especially in the SaaS businesses, global

frameworks and standards like NIST, ISO 27001/27002/27017/ 27018, GDPR, etc.

Not a perfect fit

Worried that you don’t meet all the desired criteria exactly? At Vodafone we are passionate about Inclusion for All and creating a workplace where everyone can thrive, whatever their personal or professional background. If you’re excited about this role but your experience doesn’t align exactly with every part of the job description, we encourage you to apply as you may be the right candidate for this role or another role, and our recruitment team can help you see how your skills fit in.

What's in it for you

We like to keep them flexible:

 

• Vflexy: Flexible Benefits Program

• Hybrid working kit

• Ergonomic kit allowance

• Digital meal voucher

• Flexible transportation allowance.

• Employee assistance hotline & counselling

• Comprehensive and flexible private health insurance

• Discounted price deals for wide range of products & services

 

 

Plus, plenty more to enjoy!

 

#LI-Hybrid

 

 

Data Privacy

By applying for this job, you accept the Vodafone Privacy Policy. Please visit Privacy Policy web page at https://careers.vodafone.com/privacy-policy/turkey/ for further details.

Who We Are

You may have already heard of Vodafone - We're a leading Telecommunications company in Europe and Africa. But what you might not know is that we are continuously investing in new technologies to improve the lives of millions of customers, businesses and people around the world, creating a better future for everyone.

 

As part of our global family, whether that's Vodafone, Vodacom or _VOIS, you'll feel a sense of pride and purpose as you contribute to our culture of innovation. We pursue equality of opportunity and inclusion for all candidates through our employment policies and practices. 

 

Together we can.