Essential professional experience:
Extensive technical background
Experience with SIEM administration and content development (any of Elastic Stack, Splunk, Azure Sentinel, ArcSight, etc)
System administrator or devops background: Windows, Unix systems, DBs
Scripting development (any of Bash, Python, PowerShell, Ruby, etc)
Strong background of analytical content development (Threat Detection Use cases)
Understanding of MITRE ATT&CK and Cyber Kill Chain frameworks
Fluent English
What we can offer:
— Competitive salary;
— Paid annual leave;
— The ability to attend conferences, webinars, and other events that will enhance your professional skills;
— Regular corporate events and team building;
— English courses;
— Medical insurance;
— Short Fridays;
— A friendly and young team of professionals.
Working conditions:
—
—
— Spacious comfortable office near the metro and the center of Kyiv;
— Practices of remote work.
Ready to:
Regular communication with client and partners
Inspire and motivate the team to achieve business goals
Create technical solutions, design and create architecture for large scale SIEM
Develop custom integrations with SIEM, logging and real-time analysis platforms
Develop actionable threat detection content