Security Incident Operations Analyst

Locul de muncă: Bucharest

How would you like to work in IT & Communication, toying with cutting edge technologies and enjoying your life? Come closer to #LifeAtOrange.

What we're looking for

We are looking for a Security Incident Operations Analyst to join our Information Security department. The right candidate is analytical, responsive, and committed to protecting the organization from security threats. You will be responsible for detecting, investigating, and responding to security incidents, as well as supporting the continuous improvement of our incident management processes.

What you'll be doing

• Monitoring security events and alerts using tools such as SIEM, DLP, IDS/IPS, antivirus, and other security platforms;
• Investigating and analyzing potential security incidents to determine their impact, root cause, and scope;
• Coordinating and executing incident response activities, including containment, eradication, and recovery;
• Documenting incidents, findings, and response actions in a clear and structured manner;
• Collaborating with internal teams (CERT, SOC, IT, business units) to ensure timely resolution and mitigation of security incidents;
• Supporting the implementation and improvement of the Information Security Management System (ISMS) and following up on audit recommendations;
• Defining, refining, and implementing detection rules and use cases in SIEM and DLP platforms based on business and regulatory needs;
• Monitoring security advisories and threat intelligence feeds to stay informed about emerging vulnerabilities and threats;
• Assisting the Information Security Manager with risk analysis and reporting related to security incidents;
• Tracking progress against incident response plans, timelines, and ensuring timely escalation of unresolved issues.

What you need to know & have

• Minimum 3 years of experience in a similar role or in information security operations;
• Strong knowledge of information security principles, best practices, and standards (e.g., ISO 27001, NIST, PCI DSS);
• Experience with operating systems, databases, and network devices;
• Hands-on experience with SIEM, DLP, IDS/IPS, and antivirus solutions;
• Technical skills in incident analysis, troubleshooting, and root cause determination;
• Familiarity with security frameworks, incident response methodologies, and regulatory requirements;
• Relevant certifications (e.g., Security+, CEH, CISSP) are a plus;
• Excellent problem-solving, communication, and reporting skills;
• Ability to work under pressure and manage multiple incidents simultaneously;
• Advanced English proficiency;
• Bachelor's degree, preferably in Computer Science, Information Security, Automation, or Electronics.

What's in it for you

• Performance Bonuses – based on your results & the company's;
• Electronic Meal Tickets;
• Medical & Life insurance for you - facilities for your family, too;
• #WFH & Flexible hours;
• Professional GSM subscription;
• Personal GSM subscription, also [because we believe in communication];
• Special grants on Smartphones & devices; discounts for Orange products & services;
• Development Platforms - Orange Learning, Trainings, Career Counselling, Coaching & Career plan mentoring;
• Wellbeing Programs – we support your Zen;
• & more

Come & work for a #TopEmployer company. You could be part of an organization where great colleagues and team spirit support your professional development.

Apply and let's have a talk.

At Orange, you can

We encourage all candidate profiles, regardless of gender, age, race, citizenship, ethnicity, color, language, religion, social origin, genetic traits, sexual orientation, permanent or temporary disability, nationality, political choice, social category or social origins, situation or family responsibility, belonging to a disadvantaged category, membership or trade union activity.