[HelloConnect] Security Engineer (Detection & Response)

Описание вакансии

The Role

At HelloConnect, you will be part of a dynamic team in Inoza tower, BGC that embraces innovation and leverages advanced technology to create exceptional experiences. Our culture is built on collaboration, continuous learning, and a commitment to excellence. You’ll have the opportunity to work on impactful projects, develop your skills, and grow within a supportive environment that values diverse perspectives and experiences.

As a Security Engineer, you will take on a key responsibility to improve the Security Logging & Monitoring Program by maturing the tools, processes and playbooks to reduce dwell time (indicators of which would be lowered MTTD&R, contributing to our ongoing efforts to drive business success and enhance customer satisfaction.

We’re looking for passionate individuals who can bring their unique skills and ideas to the table. Even if you don't meet every requirement but believe you’d excel in this role, we’d love to hear from you!

What you’ll do

• Responsible for SOC monitoring, use-case building, triage and advisory using cloud-native SIEM platforms
• Conduct initial triage of security events and incidents and document progress throughout the Incident Response Lifecycle
• Automate, optimize, automate and operate modern security solutions like EDR/EPPs and conventional Firewalls, IDS/IPS, Email Security, VPN, and MDM tools
• Leverage premium and open-source threat intel feeds to regularly sweep environments against rising APT campaigns
• Prepare status reports and follow up with the stakeholders through Jira and Incident Mgmt. Platform to close the remediation loop
• Facilitate efficient Incident Detection and Response in AWS cloud and enterprise IT environments

What you’ll bring

• A minimum of 2 years of experience working in mature SOC environments
• Security monitoring and incident response experience in public cloud environments such as AWS
• Experience with cloud SIEM & SOAR platforms, DDoS mitigation and preventing tools and Layer-7 Web-based perimeter security controls
• Understanding of network intrusion methods, network containment, segregation techniques and technologies such as Sandboxes and Intrusion Detection/Prevention Systems (ID/PS)
• Ability to operate EDR, EPP and Device Management solutions as per best security practices
• Decent programming skills to enable data processing, IaC and security automations
• Good communication and reporting skills
• Experience with log analysis stacks like ElasticSearch, Splunk/SumoLogic
• Open to working on-call in rotational shifts

What we offer

• Competitive Compensation: Beyond the standard package, we offer perks like Long Service Benefits (anniversary bonus) to recognize and celebrate your dedication
• Wellness & Perks: We prioritize your well-being by offering mental health support, HMO medical coverage, generous leave benefits plus life insurance for both you and your family's peace of mind
• Growth Opportunities: Invest in your personal development with an annual learning & development budget, plus access to the 360 Learning platform
• Dynamic Environment: Join a rapidly growing global Business Process Outsourcing company, where you'll collaborate with a diverse community spanning across multiple continents and cultures
• Work-Life Balance: Enjoy a healthy balance between your professional and personal life, with a supportive environment that prioritizes your well-being and personal time

Are you up for the challenge?

The first step to your new role starts here. Send in your application, along with your salary expectations and preferred start date. Our dedicated team will thoroughly review your details. We are excited to connect with you soon! 

#helloconnect

#LI-Onsite

#hcgreenhouse