Cyber Security Expert İş İlanı
İşveren Hakkında
- İstanbul(Avr.)(Sarıyer)
- Telekomünikasyon
GENEL NİTELİKLER
Your place in the team
• Having a strong security analyst mindset and using best practice knowledge from an attackers point of view to detect, identify and respond to cyber events, known and unknown threats, security risks and vulnerabilities with effective management of response plans, across the security platform lifecycle in line with cyber security policies and procedures,
• Continuous log review for several types of assets and actions (active directory, database, applications, network, OS, user behavior etc.) in accordance with requirements defined by the governance team and required standards / regulations like PCI-DSS, ISO27001, KVKK, GDPR, SOX etc.
• Strong hands on experience and technical knowledge on at least one of these tools / activities; EDR, NDR, SOAR, UEBA, SIEM, sandboxes, malware / forensic analysis, threat hunting and vulnerability scanning,
• Becoming an active contributor to SIEM and SOAR systems’ content development, security orchestration and playbook implementation processes to improve overall cyber defence center detection and incident response capability,
• Strong understanding skills & technical abilities regarding MITRE attack framework ATT&CK®,
• Integration of threat intelligence sources with SIEM and evaluation of alerts,
• Continuous attack simulation studies and defining new rules /correlations related with the output,
• Attending internal and external audits and preparing evidence when required,
• Effective reporting of log review and incident management activities on both executive and technical level.
• Having at least one of these certifications will be a plus; Security+, ECIH, GCDA, GDAT, CCNA, CCNP, CISSP.
We are looking for you if you have
• BSc. in Computer / Industrial / Electrical & Electronics Engineering is desired,
• Master’s degree (preferably in Computer Science & Cyber Security) or equivalent information security experience is desired,
• At least 5 years hands on experience in information & network security,
• Experience working in complex operational ICT environments,
• Solid knowledge of security principles and best practices,
• Proven experience in the following topics are desired:
Firewall and intrusion detection/prevention protocols,
DLP, anti-virus, anti-malware EDR solutions,
Penetration and vulnerability testing, red teaming,
TCP/IP, computer networking, routing and switching,
Windows, UNIX and Linux operating systems,
Network protocols and packet analysis,
Python, Go, Bash or any other programming/scripting language knowledge
Cloud computing,
SaaS models,
Security Information and Event Management (SIEM)
• Excellent problem-solving and analytical skills
• Critical thinking with strong attention to details and follow up
• Technically competent to contribute towards the preparation and implementation of control processes, procedures and guidelines
• Advanced in English
Diversity and Inclusion
At Vodafone, we embrace and welcome everyone. We believe that we can operate more successfully and effectively with diverse teams. And we can only leverage this diversity by building an inclusive culture where everyone is respected, can be themselves and strive to be their best. That way we can create a better future for our employees, our partners, the communities we work in and our customers.
