As a SOC Cybersecurity Incident Responder, you are a highly technical, seasoned security professional with a complete detailed understanding of incident response, cybersecurity domains and today’s threats with years of experience immersed in Security Operations culture and Enterprise or Managed Security Services CSIRT, CERT, IR Teams.
You will be working closely with our passionate Team of professionals - Security Threat Analysts, fellow Security Incident Responders, Threat Detection and Intelligence Experts, Security Architects, Engagement Managers, Software Architects.
You will be reporting to the Head of Security Operations, Tieto Security Services.
You will be responsible for :
Performing deep-dive incident analysis by correlating data from various sources
Determining if a critical system or data set has been impacted
Advises the Customer and internal Teams on threat remediation
Providing support for new analytics methods for detecting threats
Performing Emergency Incident Response activities
Requirements for an ideal SOC Incident Responder candidate :
8-12 years in Cybersecurity and SOC / CSIRT / CERT Environments
Complete understanding of the security kill chain and MITRE ATT&CK Matrix
Complete understanding of security telemetry sources and analysis
Deep experience in threat detection - endpoint, network and cloud
Advanced scripting language programming (Python, Powershell, Bash)
Network security principles, protocols and technologies
Operating systems security principles and technologies
Application security principles and technologies
Data security principles, protocols and technologies
Basic malware assessment
MS Windows operating systems administration
Working with customer-specific environment (such as NGFW / IPS / SIEM / etc)
Working with Tieto systems and tools (ServiceNow / TheHive / MISP)
Technical certifications and trainings are a plus :
Python for Security Professionals / Python Scripting Expert (SPSE)
Incident Response and Advanced Forensics
Penetration Testing with Kali Linux (PWK) /
Offensive Security Certified Professional (OSCP)
Red Hat Certified System Engineer / Administrator (RHCSA / RHCE)
SANS SEC501 : Advanced Security Essentials - Enterprise Defender / GIAC Certified Enterprise Defender (GCED)
SANS SEC503 : Intrusion Detection In-Depth / GIAC Certified Intrusion Analyst (GCIA)
SANS SEC504 : Hacker Tools Techniques, Exploits and Incident Handling / GIAC Certified Incident Handler (GCIH)
Degree in Information Technology
Knowledge of Atlassian Stack (Confluence, Jira)
Knowledge of ServiceNow / other Customer Care platforms
Finnish, Swedish and Norwegian language is a big plus
Exposure to corporate finance considerations - invoicing, pricing - a plus
Fluency in English, both spoken and written
Contact for the SOC Incident Responder position :
Join Tieto Security Services and grow your career with security talents.
At Tieto we are a team of professionals spread across many countries who are working on the frontline of a wide range of industries.
We inspire, we engage and we deliver. We have global capabilities and a strong presence where our clients need it in the Nordics or via local delivery centres across the globe.
Are you looking for a career with a company that both challenges and cares? Welcome to Tieto. We are committed to developing enterprises and society through information technology.
We believe in openness, independent thinking, and in giving our people the freedom to be their exceptional selves. We are the largest Nordic IT services company providing full lifecycle services for both private and public sectors.
Our work puts us at the frontline of a wide range of industries.
We offer you the chance to make a difference and be part of the forefront of emerging businesses and technology, exchanging ideas with the best professionals.
You will cooperate with colleagues in an international and evolving working environment, and increase your knowledge in a variety of areas.
We offer you a challenging position with great opportunities for professional growth. With us you will have the opportunity to directly influence your career development.
If you have a good idea, people will listen to you. We believe that trust fosters freedom and creativity. Our culture is built on transparency and active sharing a truly open environment.
Interested? We look forward to receiving your application and the opportunity to discuss with you!