We seek a highly skilled Senior Cybersecurity Specialist to join our Cybersecurity team. The Cybersecurity specialist will take part in a consultancy project for a big Turkish enterprise related to implementation of security operations practices (incident management, vulnerability management, etc). The ideal candidate will have experience in cybersecurity operations and a passion for various security domains (network, application, data, etc).
Duties:
- Evaluate customer business needs and understand the related risks.
- Define the measures and processes to mitigate customer risks, including
- Monitor security events and alerts from multiple sources, including SIEM and other security tools
- Analyze and investigate security incidents and events to determine the root cause
- Conduct risk assessments to identify vulnerabilities and potential threats
- Participate in incident response activities, including triage, containment, and remediation
- Develop and maintain security documentation, procedures, and guidelines
- Conduct vulnerability assessments and penetration testing
- Monitor and maintain security systems and technologies, including firewalls, intrusion detection systems, and antivirus software
- Collaborate with other teams to ensure the organization's systems and infrastructure security
- Implement secure application development practices.
Knowledge and Experience:
- 4+ years experience in SOC, information security management team, blue team or similar
- 7+ years of experience in the IT industry
- Solid understanding of enterprise technologies and security tooling landscape
- Understanding of standard security practices, like incident management, vulnerability management, etc.
- Knowledge of modern application architecture (microservices/cloud / asynchronous communication) and threat landscape
- Ability to read application code including CI/CD configurations + Some scripting skills is a great plus
- General knowledge of application vulnerabilities and related issues
- Professional certifications, such as CISSP, OSCP, CEH, and others are a plus
Personal Attributes:
- Fluent in the Turkish language
- Quick starter and learner
- Readiness to research, investigate, and adjust to customer needs
- Intuition and keen instincts to pre-empt attacks
- High level of analytical and problem-solving abilities
- Strong interpersonal and oral communication skills (English)
Ideally knowledge of cybersecurity tooling:
- Endpoint protection toolset (MS Defender)
- Familiarity with monitoring tools and SIEM solutions (QRadar, Azure Sentinel)
- Network and vulnerability scanners (Qualys)
- Cloud experience (Azure)
- Experience with BurpSuite is a big plus
We offer:
- Flexible working format - remote, office-based or flexible
- A competitive salary and good compensation package
- Personalized career growth
- Professional development tools (mentorship program, tech talks and trainings, centers of excellence, and more)
- Active tech communities with regular knowledge sharing
- Education reimbursement
- Memorable anniversary presents
- Corporate events and team buildings
- Other location-specific benefits