(Cyber-Security)/World-Leading Exchange/Prague/Hybrid/80,000-110,000czk+ Benefits
My client, a World-Leader in their field, are looking for a Data Engineer to join its crack teams in Prague. You will be working with a cutting-edge tech-stack with colleagues all over the globe to become a part of their Cyber Defence Team. Responsible for all aspects of Security Information and Event Management (SIEM), Computer Emergency Response (CERT) and Security Operations Center (SOC); in order to fully protect the information assets of the company.
You will be working to achieve a proactive detection of threats and to improve the monitoring of their information assets so-as to protect them from cyber-attacks effectively, dealing with implementation and maintenance of a state-of-the-art SIEM/SOC tooling, architecture and use cases content in order to support establishing Cyber Defence as a centre of excellence for threat intelligence.
This is a great opportunity to work for a World-leader in its field, a world leading exchange and innovative market infrastructure provider who provide an illustrious portfolio of services for investors, financial institutions and capital markets globally.
In this role, you will be:
•Supporting various Information Security related projects ensuring robustness and the state-of-the-art solutions following the regulatory requirements and the best industry practices.•Developing and maintaining state-of-the-art data models and algorithms based on threat scenarios and methodologies to achieve full visibility of potential threats to the client arising from social media and internet
•Design, develop and maintain SIEM related use cases across a complex technology stack, required to timely detect and mitigate attacks and malicious activities using Splunk ES and other security platforms
•Optimize technology stack used in Cyber Defence to proactively detect threats through usage of threat intelligence and threat hunting techniques
•Support automation of SIEM workflows using Splunk ant other technologies
•Work with subject matter experts across the Group to transform the maturity of the SIEM/SOC to an industry-leading organization
•Support research projects, e.g., exploring of new cyber scenarios in emerging technologies like containers, cloud, etc.
The ideal candidate will have:
•University or comparable degree in Computer Science, Information Security, Engineering, or related discipline•3+ years of experience in a Splunk (or similar) platform environment, implementing use-cases and data models
•Solid technical background and practical knowledge in machine learning, databases, Python and other PLs, ETL & security engineering
•Good knowledge and understanding of Cyber Security technologies, processes, and methodologies (e.g., SIEM, SOAR, IDS/IPS, threat analysis, incident response, forensics analysis, Kill Chain, MITRE ATT&CK)
•Excellent analytical skills, creativity, critical thinking, ability to identify problems and propose solutions
•Proficiency in written and spoken English; French and/or German is an asset