SOC Analyst

At our brand-new Shared Business Platform (SBP) in Bucharest, we offer a dynamic environment where career growth is actively supported through internal mobility, globally recognized certifications, and continuous professional development. We value work–life balance, offering flexible work arrangements, and wellbeing initiatives that help you thrive both personally and professionally.

Now, let's explore this exciting opportunity so that you can be part of our mission.

We are seeking a SOC (Security Operations Center) Analyst to join our dynamic Tech team. The ideal candidate is analytical and vigilant, with a strong sense of initiative and attention to detail. You will work to monitor, detect, and respond to security incidents across the organization's infrastructure, analyzing events from various sources such as SIEM systems and user-reported alerts (e.g., phishing or fraud attempts). In this role, you will investigate potential cyber threats, identify vulnerabilities, and coordinate with IT and risk management teams to contain, remediate, and resolve incidents. Your contributions will be essential in maintaining a high level of security and protecting the organization's information assets.

Key duties and responsibilities

As a SOC Analyst, you will be responsible for monitoring, detecting, and responding to security incidents from various sources, including user-reported alerts (fraud attempts/phishing) and events raised by SIEM. You will analyze security events to identify cyber threats to the SCOR Information System and investigate their root causes. Your role will involve coordinating and executing security tasks with various IT teams and assisting in Incident Response, including communication of alerts, containment, remediation, and resolution action plans.

Key Responsibilities:

• Security Monitoring and Analysis: Monitor security events and alerts from sources such as SIEM, IDS/IPS, firewalls, and endpoint protection systems.
• Security Monitoring and Analysis: Analyze security events to identify potential threats, vulnerabilities, and incidents.
• Incident Response: Respond promptly to security incidents, including triage, containment, eradication, and recovery.
• Incident Response: Investigate root causes of incidents and document findings.
• Threat Intelligence and Hunting: Develop and maintain threat intelligence to stay informed about emerging threats and vulnerabilities.
• Threat Intelligence and Hunting: Conduct proactive threat hunting to detect potential risks within the network.
• Collaboration and Coordination: Work closely with IT and other relevant teams to coordinate security tasks and incident response efforts.
• Collaboration and Coordination: Communicate effectively with stakeholders regarding incidents and remediation actions.
• Log Management: Analyze and correlate logs from various sources to detect suspicious or anomalous activities.
• Forensic Analysis: Perform forensic analysis on compromised systems to assess the extent of breaches and gather evidence.

Key Duties:

• Monitor and analyze security events to detect cyber threats.
• Respond to security incidents and investigate root causes.
• Coordinate security tasks with IT teams.
• Assist in Incident Response and follow up on remediation actions.
• Develop and maintain threat intelligence.
• Conduct Threat Hunting.
• Conduct forensic activities as needed.

Required experience & competencies

Must adhere our Key Security Principles and Team Values:

Security Principles: Defend the business, Support the business and promote responsible information security behavior.

Team values: Professionalism, Ethic, Transparency and Team Spirit.

Due to the evolution Cyber Risk, your expertise in Cyber Security is key for sharing your experience to support Technical and Functional teams to implement effective solutions and controls addressing increasing Cyber Threats.

Hard skills

• Strong background in Information and Cyber Security, including Security Operation Center
• Cross platform and technology knowledge
• Knowledge of information security-related technologies and products 
• Investigation skills
• Computer/network forensics knowledge

Soft skills

• Effective interpersonal communication skills and ability to direct colleagues
• Presentation skills