SOC Analyst SOC Analyst

BCR is the place where you learn, grow, and contribute to shaping the future of banking. We are recognized as a school of excellence in banking, a top employer in the banking sector, and a team open to learning, where every colleague feels noticed and valued.

We are an organization that values people and supports them in having a life that brings fulfillment, security, and balance.

• Analyze IT security events, incidents, and cyber-attacks, including their validation, classification, management, and the application of corrective measures and countermeasures;
• Escalate security incidents to internal or external security teams as appropriate, and report them in accordance with internal procedures;
• Monitor and analyze IT security events and cyber-attacks using multiple IT security technologies, including but not limited to: SIEM systems, IDS/IPS intrusion detection systems, perimeter security systems, Firewalls, proxies, Web Application Firewalls, malware and virus detection systems, file integrity monitoring systems, DLP, and other tools defined for this service;
• Perform detailed analysis of security incidents escalated by SOC IT Analysts; take ownership of and respond to cybersecurity incidents;
• Conduct advanced investigations, behavioral analysis of attack types and their assessment; participate in impact and trend analysis, as well as in the analysis of the intrusion level for viruses and malware;
• Monitor IT security incidents and cyber-attacks and evaluate their potential impact, such as severity of service degradation, security risks, and duration;
• Correlate IT and cybersecurity events and report them to the Security and Business Continuity Management Department, as well as to other internal (Risk and Compliance) and external (CIRT) entities involved in cybersecurity incident response management, or to relevant sources, to determine a potential increased risk to the business;
• Analyze and investigate customer notifications and complaints regarding the security and confidentiality of information and participate in the analysis and investigation of tickets opened in the Service desk applications;
• Work together with IT operational teams to resolve incidents and collaborate with the Production Systems Management team to report operational and IT security incidents;
• Participate, along with IT infrastructure administration departments, in verifying the implementation of measures to combat the infection of IT resources with malicious programs (viruses, malware, trojans) and in updating IT infrastructure systems and applications with the latest applicable security patches to limit security vulnerabilities;
• Participate in the development of procedures for managing and securing access to IT infrastructure platforms, preventing abusive and unauthorized access.

• Bachelor's degree or higher in Automatics, Computer Science, or a similar field in IT and IT Security, or equivalent work experience;
• Minimum 2 years in IT security, with a focus on security incident management and IT security operations;
• Minimum 2 years of banking experience;
• Good understanding of banking activities, as well as legal and internal regulations specific to the field;
• Good knowledge of information and IT security domains; understanding of security standards and risk management;
• In-depth technical knowledge in the areas of IT infrastructure administration, networking and communications, IT security specialization, security protocols and cryptography, central servers and their operating systems, databases, middleware, and IT applications;
• Experience with systems used in IT security operations – SIEM, IDS/IPS, firewall, web application firewall, DLP, security event correlation;
• Knowledge of control and monitoring techniques for IT and IT security equipment and systems;
• Knowledge of legislation specific to the information security field;
• Experience with security policies and procedures, and writing technical documentation;
• Recommended certifications: COMPTIA Security+ or similar;
• Minimum 2 years of experience in operational information security systems administration;
• Minimum 2 years of experience with information security standards and risk management;
• Specific knowledge in the field of IT systems security monitoring solutions;
• Knowledge of operating systems administration (Linux and Windows) and technical support for systems within the area of activity;
• Advanced level of English.

• Monthly budget for flexible benefits through the Benefit Online platform;
• Performance-based bonus;
• Banking facilities, benefits for private pension and discounts on insurance policies;
• Gifts for special occasions;
• Private medical services for you and your family;
• Hybrid and flexible work schedule;
• Up to 27 vacation days depending on your professional experience;
• Extra 7 days off per year if you have used up your vacation days;
• One day off for your birthday;
• Wellbeing, personal and professional development programs, and platforms that allow you to learn anytime, anywhere, and from any device;
• Subscription to Bookster.