SOC Cyber Threat Expert

 

Description

Your dream job does exist.
Discover it at Vodafone!

We are looking for a SOC Cyber Threat Expert

First things first: Our Brand.

We are a digital brand and a global technology company, operating in the fields of telecommunication, e-commerce, gaming, insurance, TV, tech-fin and payment systems, currently in 21 countries.

With our expertise and passion for digitalization at Vodafone, we are a global center of excellence that sets the pace in the industry. We are proud to export our successful practices abroad, while transferring our global know-how to our country.

We have a global team of more than 90.000 colleagues taking part in a transformative and an exctiting journey.

Our Spirit, Our Way.

Here are the key behaviours that help us bring our Spirit and Purpose to life:

• Earn customer loyalty: Small things do matter.
• Experiment, learn fast: Just take the chance.
• Create the future: That’s possible.
• Get it done, together: It’s up to each of us to make it happen.

Here, everyone can feel free to be themselves and express their ideas.

We are proud to have the most flexible #hybrid way of working in Turkey. Together with your team, you can decide which days to come to the office depending on your work requirements.

Another favorite: Meeting-free afternoons! Every Friday, arrival of the noon means we can start to take it easy: spend time working on our personal development or catching up with our team. We call this #CumaKafası (Friday mood).

And yes we are Agile! The world is constantly changing. And we cannot afford not to! Our journey began by simplifying our organizational model and transforming into a more agile structure that now we use extensively, especially in our development processes.

Why is This Role Critical to Us?

The Cyber Threat Expert will conduct testing for costumer infosec assets through focused threat based methodologies, to identify, expose and exploit vulnerabilities to improve Cyber readiness and review security controls and system configurations across SIEM systems across the group to ensure their security posture and compliance. Our team help clients assess their cyber risks, develop strategies to improve their security posture helping to respond to actual cyber incidents and advising on issues related to breaches, data privacy, and protection.

How Will You Spend Your Time at Vodafone?

• 
  Coding Experience in Scripting & programming languages (such as Java, Bash, Python, PowerShell, etc.) to use these skills to aid in responding to incidents involving Windows, Linux, and Mac hosts, as well as automate common analytical processes to reduce analyst time and avoid repetitive incident response tasks,
• Making assessments on Information Security processes and taking resposibility of implementing improvements on related systems,
• Experience in Scrum is a plus
• Deploy, configure, and maintain security technologies, including NG Firewalls, IPS, WAF, EDR, XDR, SOAR, SIEM, and DLP solutions to assess each of the cybersecurity technology’s responses
• Develop open-source and vendor based threat detection scenarios
• Develop tooling for Detection Development Life-Cycle
• Research on new threat hunting methodologies, tools, and technologies
• Onboard and maintain detection and hunting products (SIEM, EDR, etc.)
• Manage and maintain internal SOC technologies and processes
• Effectively use threat intelligence services and malware sandboxes for hunting new malware threats
• Experience working with security technology and products such as Firewalls, IDS, IPS, VPC,
• Excellent written skills with demonstrated ability to write reports. Including the ability to discuss findings in a risk perspective with clear remediation advice specific to the client’s environment.

You are just the person we’ve been looking for, if you have:

• 
  Bachelor’s Degree in engineering departments (preferably Electronics or Computer Engineering),
• 5+ years of experience in performing hands-on security engineering, consulting, team management, penetration testing, and/or adversary simulation, red teaming exercises, vulnerability assessments in complex operational ICT environments,
• Familiarity with industry standards like OWASP TOP10, CVSS, CIS, NIST etc.
• Excellent understanding of attacker tools, tactics and techniques and referencing on MITRE ATT&CK, strong knowledge of MITRE Shield.
• CISSP, CISM, OSCP, CEH level is expected.
• Experienced in SIEM products (QRadar, McAfee, CryptoSIM, Splunk, Logsign etc.) and SOAR products.
• Experience working with Threat modeling (e.g., STRIDE, PASTA, FAIR, Security Cards), operational threat intelligence, and attack framework standards (e.g., MITRE ATT&CK) with a good understanding of the Cyber Kill Chain and pervasive threat attack methods and remediation,
• Experience working in an industry standard Security Operations Center or similar environment providing incident handling and response, intrusion detection, analysis, cyber threat intelligence, threat determination, and mitigations processing and tracking, working with several network and system security technologies to include Elasticsearch, data analytics platforms, endpoint tools, network technologies, and SIEMs
• Experience developing detection logic for enterprise SIEM systems and with exploitation techniques and use case development
• Experience in the detection and response to malicious activity using log data and alerts from cybersecurity solutions, systems, and network devices
• Experience extracting and analyzing forensic artifacts across Windows, Mac, and Linux operating systems
• Experience of incident response processes, and threat intelligence cycles, including understanding of IP network traffic, security vulnerabilities, different exploitation techniques, and malware behaviors (including communications protocols)
• Understanding of Amazon Web Services cloud environments and their security controls, microservices architectures & distributed Platforms especially in the SaaS businesses, global frameworks and standards like NIST, ISO 27001/27002/27017/ 27018, GDPR, etc.

Get to know us
If you want to know more about us and what we do, then visit our website: www.vodafone.com.tr

https://www.vodafone.com.tr/insan-kaynaklari

Instagram: https://www.instagram.com/vodafonekariyer/

Youtube: https://www.youtube.com/user/VFTurkiye

This role has a #Hybrid working model

Wait for it: Our benefits!

We like to keep them flexible:

• Vflexy: Flexible Benefits Program
• Hybrid working kit
• Ergonomic kit allowance
• Digital meal voucher
• Flexible transportation allowance
• Employee assistance hotline & counselling
• Comprehensive and flexible private health insurance
• Discounted price deals for wide range of products & services

Plus, plenty more to enjoy!

Data Privacy
By applying for this job, you accept the Vodafone Privacy Policy. Please visit Privacy Policy web page at https://careers.vodafone.com/privacy-policy/turkey/ for further details.

$ads={2}

 

.

$ads={1}