Overview

We are looking for an IT Security Engineer whose primary responsibility will be to collaborate closely with our external Security Operations Center (SOC). This role focuses on reviewing, validating, and responding to SOC alerts, as well as implementing necessary countermeasures within our internal environment and supporting our employees and systems with security advisory. The ideal candidate has strong communication skills, solid technical expertise, and a proactive hands-on approach to maintaining and improving our security posture.

Key Responsibilities

SOC Collaboration & Alert Management

o Serve as the central point of contact between the organization and the external SOC.

o Review, validate, and triage alerts escalated by the SOC.

o Investigate incidents, perform root-cause analysis, and document findings.

o Ensure timely and accurate feedback to the SOC regarding alert outcomes and follow-up actions.

Countermeasure Implementation

o Implement technical countermeasures internally

o Work with IT teams and system owners to remediate vulnerabilities and address identified threats.

o Develop and maintain playbooks and procedures for recurring security events.

Security Operations Support

o Monitor and maintain security tools (SIEM dashboards, vulnerability scanners).

o Assist in tuning detection rules and improving alert quality in cooperation with the SOC.

Incident Response

o Support containment, eradication, and recovery efforts for security incidents.

o Coordinate internal stakeholders during incident response activities.

o Maintain incident logs, reports, and after-action reviews.

· Policy, Compliance & Governance.

o Contribute to the creation and maintenance of security policies, standards, and workflows.

o Support compliance with relevant frameworks (e.g., NIST, ISO 27001, IS22301, SOC 2, GDPR).

Continuous Improvement

o Identify opportunities to enhance detection, response, and overall security maturity.

o Stay informed about new threats, vulnerabilities, and industry best practices.

Required Qualifications

· Bachelor’s degree in Information Security, Computer Science, or equivalent experience.

· 5+ years of experience in security operations, SOC interaction, or incident response.

· Hands-on experience with security tools such as SIEM, vulnerability scanners, resp. Microsoft Sentinel, M365 security technologies and Qualys vulnerability management.

· Understanding of network security, endpoint security, identity and access management, and threat detection.

· Strong communication skills for coordinating with external SOC teams and internal IT stakeholders.

Preferred Certifications

· Certifications such as CISSP, ITIL, CISA, Security+ or similar.

· Familiarity with cloud security (Azure, AWS).

· Experience with scripting/automation (PowerShell, Python).

· Prior experience working with a managed SOC.

Key Competencies

· Strong sense of ownership and accountability.

· Strong analytical and problem-solving skills.

· Hands-on mentality

· Ability to manage multiple alerts/incidents simultaneously.

· Detail-oriented with excellent documentation habits.

· Professional Proficiency in written and spoken English.