Aurify

Overview of job

Are you passionate about cybersecurity and ready to take a hands-on role in driving the evolution of our security operations? As a Medior/Senior Security Operations Engineer at Aurify, you’ll play a pivotal role in building and refining our Google Security Operations Center (SOC), with a specific focus on SIEM and SOAR solutions.

You will be part of our Security Operations team, responsible for monitoring and escalating security alerts across our infrastructure and implementing cutting-edge security procedures. This role goes beyond production security—it encompasses securing our internal systems and processes. We’re looking for someone with both practical and theoretical knowledge in IT security, capable of not only enforcing policies but also continuously improving them to meet evolving security challenges.

What you’ll be doing 

• Building and optimizing our Google SOC, including SIEM and SOAR implementation (Google Chronicle)
• Monitoring, analyzing, and escalating security alerts from our Google Chronicle SIEM
• Developing, evolving, and enforcing security policies and incident response plans
• Driving the creation of SIEM dashboards and enhancing monitoring and alerting capabilities
• Managing and mitigating CVE vulnerabilities on our platforms and base images
• Assisting with the implementation of security measures for both external and internal systems
• Implementing and automating static code scanning processes to identify and remediate vulnerabilities early in the development lifecycle
• Leading efforts in automated security scanning for continuous monitoring of code and infrastructure security
• Participating in the on-call security response rotation to handle critical security incidents

Requirements

• Hands-on experience with SIEM (preferably Google Chronicle) and SOAR solutions
• Strong knowledge of CVE management and experience with vulnerability mitigation
• Solid understanding of cloud security (GCP and/or AWS)
• Practical experience in developing and implementing security policies and incident response plans
• Strong command of English (both written and spoken)
• Ability to collaborate effectively with cross-functional teams
• Experience with Linux systems (RedHat/CentOS) and using Jira for project management

Nice To Have

• Knowledge of container security (Docker, Anchore)
• Experience with OSSECC, Wazuh, Tenable.io, Burpsuite, Cloudsuite
• Familiarity with Ansible, Opsgenie, and Prometheus
• Experience with patch management solutions such as Katello/Satellite
• A keen focus on real-world security issues and the ability to differentiate between buzz and practical security

Soft skills 

• Excellent communication-skills to work constructive and in cooperation with internal and external teams
• Be assertive, knowledgeable and trustworthy
• High degree of responsibility and autonomy