O pozici
Job Description & Summary About the Team For us, SOC is not just a ticket or detections „washing machine “. We perceive incident response as a mandatory part of our services, along with other proactive activities such as: Threat Hunting, Threat Intelligence, Vulnerability Management, as well as post-incident activities like Forensic Analysis and more. Threat Management team consists of cybersecurity professionals focused on prevention of the cyberattacks via detection and responding to cyber threats. The key pillars consist of incident response, threat hunting, threat intelligence, security monitoring, vulnerability management, engineering and consulting services. About your Manager Lubomír has over 10 years of cyber security experience with different projects related to mainly cyber security managed services, building and operating Security Operation Centers (SOC), Threat Hunting & Intelligence and Vulnerability Management. Lubomír is also responsible for team leading, project management, designing of cyber security managed services, creation and development of training plans and is a proven coach to train other team members or client staff. Outside of work, he is involved in teaching, science, and research at the University of Hradec Králové, where he guarantees and teaches the course Surveillance Systems and Forensic Analysis. Job Description & Summary We are building a new, compact delivery team (2-3 FTE) focused on Threat Detection & Response (TDR), which will be the backbone of our professional services offering. This team does not operate purely as a specialized "tool team" nor solely as an advisory team without technical depth. We are looking for individuals who want to combine hands-on technical work with a consulting overlay—a skill set that includes structuring problems, designing solutions, communicating them effectively to clients, and seeing projects through to completion. If you are looking for a role where you spend 80% of your time on slides and onl
Co budeš dělat
- Technical Delivery (~50% of Time) Engage in hands-on work with SIEM (primarily Splunk, secondarily Microsoft Sentinel) including configuration, optimization, and troubleshooting.
- Develop and refine detection rules/use cases based on threat landscapes and client requirements.
- Conduct threat hunting activities by proactively searching for threats within client environments.
- Support incident response processes, including analyzing incidents and recommending remediation actions.
- Work with log management architectures, data sources, and log onboarding.
- Assess the maturity of clients' detection and response capabilities.
- Client Communication (~30% of Time) Independently lead technical workshops and working sessions with client security teams.
- Present technical findings and recommendations with the ability to translate technical jargon into understandable conclusions.
- Participate in status meetings, discussing scope, priorities, and next steps.
- Build and maintain working relationships with client security teams.
- Documentation and Business Development (~20% of Time) Prepare high-quality deliverables: assessment reports, solution proposals, recommendations, and roadmaps.
- Compile executive summaries and outline business impacts of technical findings.
- Assist in proposal preparation—providing technical input, labor estimation, and scope definition.
- Contribute to the internal knowledge base and aid in the development of service offerings.
Koho hledáme
- What This Role Is NOT: ⚠️ To avoid misunderstandings: This is NOT a purely technical role where you'll spend all day in the console. Client communication and documentation are expected. This is NOT a purely consulting role where you are only working on slides. We expect hands-on technical work. This is NOT a SOC analyst role with rotational shifts. We work on projects, not in monitoring. This is N
Benefity
- Flexible working arrangements (including remote work, part-time options, and flexible hours).
- Personalized development plan with access to internal and external training, certifications, and coaching.
- Work-life balance (paid leave, sabbatical, parental leave, and more).
- Health and wellness (comprehensive health insurance, company-paid life insurance, and wellness programs).
- Team events and Away Days (team building, etc.).
- Regular feedback on your work, also consultation with a coach with whom you can address your further development and career direction.
