SOC Analyst

Nasze wymagania: Demonstrable understanding of NIST / SANS Cybersecurity Incident Management Frameworks Minimum 2 years’ of experience with IP network and routing along with deep packet analysis using tools like Wireshark Minimum 2 years’ of experience with products of IPS/IDS, AV, Crowdstrike, Logscale, etc. Minimum 2 years’ of experience with Cybersecurity incident response processes and procedures Minimum 2 years’ of experience with information & Cybersecurity best practices Multi SIEM platform experience (with SOAR / EUBA capabilities) Demonstrable experience with SOAR Demonstrable experience with EDR / ETDR solutions Demonstrable experience with multi-vendor email security platforms At least one of the following certifications: CISSP / CEH / ECIH / CHFI / Certified SOC Analyst / Certified Cloud Security Professional Mile widziane: Proficiency in a common scripting language (e.g. Python, PS) Experience with cloud platforms (AWS, Azure, GCP) and their security aspects Experience with, DLP, Threat Hunting, Threat Intel, Insider risk management / STRIDE, and eDiscovery / Cyber Forensics Unix/Wintel experience O projekcie: Are you a Cyber Security professional with Security Monitoring and Incident response experience? Are you looking for exposure to a wide range of cyber threats across a global footprint? Willing to provide support on weekends? If yes, we would love to hear from you! Aon is recruiting for a cybersecurity operations analyst to join our team. Our office is located in Krakow and we are working in a hybrid working model. Aon’s Security Operations Center (SOC) seeks to be at the forefront of cybersecurity excellence, driving innovation and standard to protect our organization and stakeholders from emerging cyber risks. By adopting a DevOps culture and intelligence-driven strategy, our SOC strives to build a secure, resilient environment and workforce, fostering trust and assuring all who rely on us to protect their data are in safe hands. As a Cybersecurity Operations Analyst within the EMEA Region, you’ll play an important role in supporting this vision. You will drive the team to success by supporting ticket triage, event correlation, incident response and other security activities. This position will perform supervising across all systems in a global enterprise footprint. Zakres obowiązków: Proven understanding of the security landscape, including prevalent threats, existing technologies, and modern security architectures. Strong written and verbal communication skills to effectively communicate and present security risk concepts with business and technology partners. Proven creative problem-solving and analytical skills. Bachelor’s degree in Management Information Systems, Computer Science, or related Information Technology field, or equivalent experience.