Detection Engineer
2 settimane fa
Detection EngineerAbout the RoleWe are looking for a Senior Detection Engineer to join our international cybersecurity team. The person who joins will help build upon the current ATT&CK-based detection manual used by the Getronics Security Operations Center (SOC), and take it to the next level of maturity and capability. Additionally, they will support the day-to-day threat detection work of a team of analysts servicing a wide range of clients across various industries, including Getronics' private/hybrid cloud and internal IT services.Key Responsibilities· Develop threat detection rules to identify modern attacker tactics and techniques, working closely with threat intelligence, incident response, security analysts, and infrastructure/security architecture teams.· Maintain and optimize the existing detection rulebase, applying lifecycle management and deprecating rules where needed.· Assess ATT&CK coverage to identify detection gaps and improvement opportunities.· Define and maintain effective detection metrics.· Support compliance-related use cases as required.· Create and maintain lists to support correlation rules.· Design dashboards for specific threat detection use cases and train analysts on their use.· Provide input into threat hunting activities through the development of efficient search queries.· Collaborate with business and IT teams to create detection strategies aligned with current and emerging business needs.· Analyze alert trends and propose improvements.· Support data collection improvements and maintain configuration management documentation.Requirements· Minimum of 2 years' experience as a Cybersecurity Detection Analyst working with SIEM technologies (QRadar, LogRhythm, Splunk, Elastic Security, InsightIDR, AlienVault OSSIM, etc.).· Previous experience in other technical cybersecurity roles such as SOC Analyst, Threat Intelligence Analyst, or Pentester.· Hands-on experience implementing detection playbooks based on the MITRE ATT&CK framework.· Strong analytical and problem-solving skills.· Solid understanding of the current threat landscape, including common attack vectors and best practices for protecting systems and networks.· Advanced knowledge or experience with at least two of the following technologies: Python, RegEx, Sigma, YARA.· Experience fine-tuning correlation rules for optimal performance.· Strong communication skills with the ability to document clearly and summarize effectively.· Fluent English is mandatory due to international team collaboration.· Structured, goal-oriented working style.
-
Detection Engineer
3 settimane fa
Italy, IT Getronics A tempo pienoDetection Engineer About the Role We are looking for a Senior Detection Engineer to join our international cybersecurity team. The person who joins will help build upon the current ATT&CK-based detection manual used by the Getronics Security Operations Center (SOC), and take it to the next level of maturity and capability. Additionally, they will support the...
-
Field Service Engineer
2 settimane fa
italy Smiths Detection A tempo pienoSMITHS DETECTION MAKING THE WORLD A SAFER PLACE Ogni minute di ogni giorno, in quadi ogni paese intorno al mondo, le persone e tecnologie di Smiths Detection rendono il mondo un luogo piu sicuro. Proteggiamo le persone, imprese e infrastructture con le tecnologie piu avanzate per lo screening nel campo dell’aviazione, porti marittimi, frontiere e confini,...
-
Endpoint Security Engineer
2 settimane fa
Italy, IT RED Global A tempo pienoRuolo : Endpoint Security Engineer Luogo: 100% Remote Durata : 2 anni Possibilita Seniority: >4 anni P.iva / B2B Contract / Freelance JD Stiamo cercando un Endpoint Security Engineer con esperienza pratica in Trellix Endpoint Detection and Response (EDR) per unirsi al nostro team di sicurezza operativo in modalità completamente remota. La figura sarà...
-
Endpoint Security Engineer
1 settimana fa
Italy RED Global A tempo pienoRuolo : Endpoint Security Engineer Luogo: 100% Remote Durata : 2 anni Possibilita Seniority: >4 anni P.iva / B2B Contract / Freelance JD Stiamo cercando un Endpoint Security Engineer con esperienza pratica in Trellix Endpoint Detection and Response (EDR) per unirsi al nostro team di sicurezza operativo in modalità completamente remota. La figura sarà...
-
Senior Security Engineer Italy
1 settimana fa
italy Chronos Consulting A tempo pienoJob Description Our client is a world-renowned US startup in the field of automation. This California unicorn is still a private enterprise experiencing hypergrowth. They are looking for an exceptional Senior Security Engineer to join their team as they build their defensive security capabilities. This is a full-time, permanent role. Hybrid or Remote....
-
Data scientist AWS
2 settimane fa
Italy agap2 Italia A tempo pienoCHI SIAMO AGAP2 è un gruppo europeo di consulenza ingegneristica e operativa facente parte del Gruppo MoOngy. Posizione: Data scientist AWS Stiamo cercando un/una Data Scientist con 2-3 anni di esperienza e una solida base su AWS , in particolare sui servizi dedicati all’AI/ML e all’orchestrazione di modelli in produzione. La risorsa lavorerà su...
-
Data scientist AWS
2 settimane fa
Italy agap2 Italia A tempo pienoCHI SIAMO AGAP2 è un gruppo europeo di consulenza ingegneristica e operativa facente parte del Gruppo MoOngy. Posizione: Data scientist AWS Stiamo cercando un/una Data Scientist con 2-3 anni di esperienza e una solida base su AWS , in particolare sui servizi dedicati all’AI/ML e all’orchestrazione di modelli in produzione. La risorsa lavorerà su...
-
Threat Content Developer
5 giorni fa
Roma, Italy, Integrity360 A tempo pieno 60.000 € - 120.000 € all'anoAbout Us Integrity360 is the largest independent cyber security provider in Europe, with a growing international presence spanning the UK, Ireland, mainland Europe, Africa and the Caribbean. With over 700 employees, across 12 locations, and six Security Operations Centres (SOCs)—including locations in Dublin, Sofia, Stockholm, Madrid, Rome and Cape...
-
Junior Presales Engineer
3 settimane fa
Milan, Lombardy, Italy, Provincia di Milano SecureGate A tempo pienoJunior Presales Engineer – Cybersecurity | Milan SecureGate – Innovative IT & Cybersecurity Solutions About Us At SecureGate , we protect companies from cyber threats with cutting-edge technology and expertise. Through our two business units – SGBox (security management platform) and CyberTrust 365 (24/7 managed cybersecurity services) – we help...
-
DevOps Engineer
3 settimane fa
Rome, Latium, Italy, IT Atlas Reply Roma A tempo pienoFor a new exciting challenge in the Digital Innovation field, we are looking for a passionate and professional person working as DevOps Engineer in an international team composed by professional DevOps Specialists ( gaming & electronic payments environments ). ACTIVITIES Design, implement and maintain continuous integration and distribution pipelines. Design...
