Augmenta

Távmunka

1.1M – 1.6M HUF vállalkozói havonta+ÁFA

Elvárások

• Splunk
• SPL
• Angol (C1)

Előnyt jelentő készségek

• Python
• PowerShell
• Wiz
• Netskope
• Zscaler

A mi követelményeink

Eredeti szöveg. Fordítás megjelenítése

The ideal candidate will be responsible for supporting the design, implementation, and maintenance of threat detection use cases within a hybrid SIEM environment. This role requires a solid foundation in security operations, log analysis, and query development to assist in protecting our organization from emerging cyber threats.

Must-Haves:

• 3+ years of experience in cybersecurity or information technology, with at least 1 year
  focused on Security Operations (SOC) or SIEM content.
• Proficient in Splunk Enterprise Security (ES), including SPL (Search Processing
  Language) and alert configuration.
• Solid understanding of network protocols, system logs (Windows/Linux), and security
  event analysis.
• Familiarity with threat intelligence integration and applying MITRE ATT&CK framework
  to detection efforts.
• Basic familiarity with scripting languages (e.g., Bash, Python, PowerShell) for
  automation and data analysis.
• Familiarity with offensive security tactics & techniques is a plus.
• Relevant certifications such as Splunk Core Certified Power User, CompTIA CySA+,
  BTL1, or similar are preferred.
• Strong problem-solving skills and the ability to work collaboratively in a fast-paced
  environment.

Nice-to-Haves:

• Exposure to additional SIEM platforms or security tools (e.g., Elastic, QRadar,
  CrowdStrike).
• Ability to learn quickly and contribute to a collaborative security culture.

Pozíció / projekt rövid leírása

Eredeti szöveg. Fordítás megjelenítése

Offer Details: 

• 100% Remote work, will remain remote permanently!
• Working schedule: 07:00 – 15:00 CET (Central European Time)

About Augmenta
We are an IT consulting firm that specializes in providing digital solutions to businesses of all industries. With a team of experienced professionals and cutting-edge technology, we offer services in strategy and consulting, technology, and operations. Our goal is to help our clients stay ahead of the competition and thrive in today’s digital landscape.

Napi feladatok

Eredeti szöveg. Fordítás megjelenítése

1. Assist in developing, optimizing, and managing SIEM searches and alerts to identify potential security threats in real-time.
2. Support the creation and refinement of custom SIEM use cases and detection logic to enhance threat visibility across systems and networks.
3. Analyze log data and triage alerts to identify anomalies and support proactive threat hunting initiatives.
4. Collaborate with senior engineers and incident response teams to validate detection logic and provide analysis during security incidents.
5. Assist in maintaining and tuning SIEM deployments, specifically focusing on false positive reduction and data quality.
6. Help integrate SIEM with other security tools and data sources to ensure proper data ingestion and coverage.
7. Stay current on evolving cyber threats, attack techniques, and industry best practices to contribute to improved detection strategies.
8. Document detection rules, runbooks, and incident findings for knowledge sharing and compliance purposes.

mutass kevesebbet

Specifikációk

• Online állásinterjú
• Toborzás nyelvei: angol
• Azonnali kezdés
• Távmunka
• Rugalmas munkaidő

A toborzási folyamat lépései

1. 3 technical interview with client

Biztosított eszközök

• Számítógép: Notebook
• Monitorok: Ha szükséges

Metodológia

• Agile managementAgile
• Version control systemGIT
• Unit testsTDD
• Code reviews

Extrák

• Nemzetközi projektek
• Friendly environment
• Flexible working hours and remote work possibility
• Long-term cooperation

JELENTKEZÉSHEZ KATTINTS IDE